Since the Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996, the law has continually shaped how protected health information (PHI) is managed. While the law's core Privacy and Security Rules for PHI have remained the foundation of patient privacy, the HIPAA landscape has grown more complex in this evolving digital age. This page provides resources to help pediatricians navigate HIPAA compliance while addressing the unique considerations that arise with caring for children.

Covered Entities and Business Associates

Understand what it means to be a covered entity or business associate under HIPAA.

Parental Access to Medical Records

Review information about parental access to their minor child's medical records.

Medical Record Retention

Learn about key considerations, guidance, and best practices for medical record retention.

Destruction of Protected Health Information

Access requirements for the destruction and disposal of protected health information.

Breaches of Protected Health Information

Explore notification and administrative requirements for breaches.

HIPAA Enforcement

Find details about the responsible agencies and process for enforcement and penalties for violations.

Student Records: FERPA & HIPAA

Learn the basics about the major federal privacy protections governing the disclosure of information about students and patients: the Family Educational Rights and Privacy Act (FERPA) and HIPAA.

21st Century Cures Act Interoperability Final Rule Overview

Review what pediatricians need to know about the 21st Century Cures Act Interoperability Final Rule.

Disclaimer: This information is general in scope and educational in nature. It is not intended as legal advice. If you require legal advice, contact an attorney. 

Last Updated

03/02/2026

Source

American Academy of Pediatrics