Chapter 4: Hipaa Course | American CPR Care Association

Hipaa Course

Home » Chapter 4 : Covered Entity Responsibilities

Chapter 4 : Covered Entity Responsibilities

All covered entities must protect the information by:

  1. Implementing safeguards to protect information. For example, password protecting the computer systems in clinics to ensure others cannot access patient health or private information.
  2. Ensuring there is minimal use and disclosure of information. For example, if an authorized family member requests for additional information about a medication prescribed to a patient, it is not necessary to disclose the patient’s full medical history to the family member.


  1. Training employees on proper protocols to protect health information.
  2. Limiting access to who can view the health information. This means that employees who do not come in contact with patients, do not need access to patients’ full medical and financial history.
  3. Obtaining written permission from consumer before giving out any information. This is crucial, and all covered entities must abide by this rule.

American CPR Care Association is rated 4.7 out of 5 based on 48,237 ratings.
All content Copyright 2023 © – American CPR Care Association. All rights reserved.