Healthcare Glossary

Clear definitions of healthcare and HIPAA compliance terms to help you understand industry content better.

access controls

Access controls are rules that limit who can view or use sensitive information like medical records. For example, only authorized doctors and nurses can access a patient's private health information (PHI).

Used 43 times

Administrative Safeguards

HIPAA security rules about policies, procedures, and training to protect patient information. This includes having a security officer and training employees on privacy rules.

Used 4 times

artificial intelligence (AI)

Artificial intelligence (AI) refers to computer systems that can perform tasks normally requiring human intelligence, like analyzing medical data to detect diseases or recommend treatments.

Used 0 times

audit logging

Audit logging tracks and records activities or events in a computer system. For example, in healthcare, audit logs keep a record of who accessed patient records and when.

Used 1 time

Audit Trail

A record of who accessed patient information, when they accessed it, and what they did with it. Like a logbook that tracks everyone who looks at medical records.

Used 0 times

audit trails

Audit trails are records that show what actions were taken and by whom, like a trail of breadcrumbs. For example, in healthcare, audit trails track who accessed a patient's medical information and what they did with it.

Used 11 times

Authorization

Written permission from a patient allowing their health information to be used or shared for specific purposes. Different from consent, this is required for uses beyond treatment, payment, and healthcare operations.

Used 2 times

BAA

Business Associate Agreement - A contract between a healthcare provider and a business associate that outlines how protected health information will be handled and protected.

Used 2 times

Breach

When protected health information is accessed, used, or shared without permission. This could be a hacker stealing patient records or accidentally sending medical files to the wrong person.

Used 49 times

breach notification

A breach notification is an alert that must be sent out if someone's private information, like medical records, is improperly accessed or exposed. For example, if a hacker gets into a hospital's computer system, the hospital must notify the patients whose data was breached.

Used 22 times

Breach Notification Rule

The Breach Notification Rule requires healthcare organizations to notify people if there is a breach that exposes their private medical information. For example, if a hacker gets access to patient records, the organization must let those patients know.

Used 3 times

breach response plan

A breach response plan is a set of steps to follow if sensitive information like medical records is accidentally shared or accessed without permission. For example, if an employee's laptop with patient data is stolen, the plan would guide how to notify affected patients and authorities.

Used 12 times

Business Associate

A company or person that handles protected health information for a healthcare provider. Examples include medical billing companies, cloud storage providers, or IT support companies that work with hospitals.

Used 8 times

Business Associate Agreements

Business Associate Agreements are contracts that healthcare providers must have with companies they work with that may access patient information. For example, a hospital would need a Business Associate Agreement with a company that handles medical billing.

Used 31 times

Business Associate Agreements (BAAs)

A Business Associate Agreement (BAA) is a contract that outlines the responsibilities of companies that handle private health information on behalf of healthcare providers. For example, a cloud provider storing medical records would need a BAA with the healthcare provider.

Used 0 times

business associates

Business associates are companies or individuals that perform services for healthcare organizations involving access to patient information. For example, a billing company that handles medical claims would be considered a business associate.

Used 12 times

compliance

Compliance means following the rules and regulations. For healthcare organizations using social media, HIPAA compliance refers to protecting patients' private medical information as required by the Health Insurance Portability and Accountability Act (HIPAA).

Used 51 times

compliance tracking

Compliance tracking means monitoring whether rules and regulations are being properly followed. For example, a hospital dashboard that shows if patient privacy laws are being obeyed.

Used 1 time

consent

Consent means giving permission or agreement for something to happen. For example, under HIPAA (the Health Insurance Portability and Accountability Act), patients must give written consent before their medical images can be shared.

Used 11 times

covered entities

Covered entities are organizations that must follow rules to protect people's private health information. Examples are hospitals, doctors' offices, and health insurance companies.

Used 14 times

Missing a Term?

Our glossary grows automatically as we publish new content. Check back regularly for new terms and definitions.

Read Latest Articles

Need HIPAA-Compliant Hosting?

Join 500+ healthcare practices who trust our secure, compliant hosting solutions.

HIPAA Compliant
24/7 Support
99.9% Uptime
Healthcare Focused
Starting at $229/mo HIPAA-compliant hosting
Get Started Today