HIPAA: Health Insurance Portability and Accountability Act - Primary federal law governing healthcare data privacy and security requirements in the United States
HITECH Act: Health Information Technology for Economic and Clinical Health Act - Expands HIPAA requirements and establishes incentives for electronic health records adoption
State Healthcare Privacy Laws: Various state-specific regulations governing healthcare data privacy and security, which may be more stringent than federal requirements
Medicare/Medicaid Compliance: Federal requirements for healthcare providers participating in Medicare and Medicaid programs, including documentation and system access controls
Joint Commission Standards: Healthcare facility accreditation requirements including information management and security standards
State Data Breach Laws: State-specific requirements for notification and handling of data breaches involving personal information
GDPR: General Data Protection Regulation - EU privacy law that may apply to U.S. hospitals treating European patients
CCPA: California Consumer Privacy Act - Specific privacy requirements for organizations handling California residents' data
Electronic Communications Privacy Act: Federal law governing the interception and monitoring of electronic communications
Computer Fraud and Abuse Act: Federal law prohibiting unauthorized access to computers and networks
CAN-SPAM Act: Federal law regulating commercial email practices and setting rules for commercial messages
Americans with Disabilities Act: Federal law requiring reasonable accommodations for disabled employees, including technology accessibility
National Labor Relations Act: Federal law protecting employees' rights to discuss working conditions, including through electronic means
NIST Cybersecurity Framework: Voluntary framework of computer security guidance for organizations to better manage and reduce cybersecurity risk
PCI DSS: Payment Card Industry Data Security Standard - Security standards for organizations handling credit card information
OSHA Regulations: Federal workplace safety regulations that may include requirements for electronic systems and documentation
