HIPAA is a critical piece of the nuanced privacy puzzle in the US, but it’s often misunderstood — frequently reduced to just a medical form or mistaken for a blanket privacy law. On Episode 31 of Privacy Chats with Rachel and John, we bring you a HIPAA “crash course” - who it’s for, data in scope, and the consequences of non-compliance. 

And, just for fun, here are some silly HIPAA puns brought-to-you by ChatGPT: 

"HIPAA-chondriac" – Someone who constantly worries about privacy breaches.

"HIPAA-ly ever after" – What you hope for after a successful compliance audit.

"HIPAA-crite" – Someone who preaches privacy but doesn’t follow the rules.

"HIPAA-critical situation" – When someone is taking compliance a little too seriously.

________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________

This episode was directly informed by the US Department of Health and Human Services’ dedicated HIPAA page and by publications from the HIPAA Journal: 

• https://www.hhs.gov/hipaa/for-professionals/privacy/index.html

• https://www.hipaajournal.com/new-hipaa-regulations