Privacy and Security Standards Resources

AHA/AHIMA Webinar: Engaging Patients Through Access to Their Medical Records (November 15, 2016)

AHA Statement to NCVHS regarding HIPAA’s minimum necessary standard (June 16, 2016)

AHA comment letter to CMS extending the Stark protections for Health IT donations.  (May 13, 2013)

AHA comment letter to OIG extending the antikickback protections for Health IT donations.  (May 13, 2013)

AHA Comments: HIPAA Privacy Rule Accounting of Disclosures (RIN 0991-AB62); Notice of Proposed Rulemaking, 76 Fed. Reg. 31426  (August 1, 2011)

Legal Advisory: Accounting of Disclosures Under HITECH: Proposed Rule (June 15, 2011) Members Only

AHA Comments: Modifications to the HIPAA Privacy, Security, and Enforcement Rues under the Health Information Technology for Economic and Clinical Health Act; Proposed Rule, 75 Fed. Reg. 40868 (September 10, 2010)

Legal Advisory: HITECH's Modifications to HIPAA Requirements: The Proposed Rule (August 11, 2010) Members Only

Regulatory Advisory: HIPAA Enforcement Updated Under HITECH: The Interim Final Rule (November 10, 2009) Members Only

Regulatory Advisory: HHS' Breach Notification Obligations: The Interim Final Rule (September 9, 2009) Members Only

Contracting for Electronic Health Records: Guidelines for Hospitals(2011)

Guidelines for Releasing Patient Information to Law Enforcement  (July 2005)

Updated Guidelines for releasing information on the condition of patients (February 2003) Members Only

AHA's Health Information Technology Resources

HHS' Health Information Privacy website


Privacy and Security Standards Resources Archive



Highlighted Resources

About AHA


Member Constituency Sections

Key Relationships

News Center

Performance Improvement

Advocacy Issues

Products & Services


Research & Trends


155 N. Wacker Dr.
Chicago, Illinois 60606

800 10th Street, N.W.
Two CityCenter, Suite 400
Washington, DC 20001-4956