Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires the adoption of national standards for electronic health care information. The HIPAA Privacy Rule prevents the unauthorized disclosure of patient personal information. The HIPAA Security Rule requires administrative, physical, and technical controls to assure the confidentiality, integrity, and security of patient health information.
References:
http://www.hhs.gov/ocr/privacy/hipaa/understanding/index.html