45 C.F.R. § 164.302
Applicability
A covered entity or business associate must comply with the applicable standards, implementation specifications, and requirements of this subpart with respect to electronic protected health information of a covered entity.
Notes of Decisions
Cited in 2
cases (2 in the last 5 years), 2025–2025 · leading case: Kepler v. NaphCare Incorporated
Kepler v. NaphCare Incorporated (2025)
“…unauthorized access to patients’ medical records.” (Doc. 69 at 15 (citing 45 C.F.R. § 164.302 ).) 1 Casey’s mistreatment was caused in-part by NaphCare Defendants’ failure to properly 2 review her complete medical records including her prescription medication history. The 3…”
Meherg v. Rush University Medical Center (2025)
“…that have been adopted to implement HIPAA is the Security Rule. See 45 C.F.R. §§ 164.302 to 164.318. The Security Rule requires entities maintaining covered records to put certain technical safeguards in place, including audit controls: “hardware, software, and/or…”
Annotations are extracted automatically from the opinions in the
Syfert caselaw corpus and ranked by authority, recency, and
treatment. Dots show Syfertize treatment of the citing case itself.