HIPAA (Health Insurance Portability and Accountability Act) is primarily enforced by the Office for Civil Rights (OCR) within the Department of Health and Human Services (HHS). Its responsibilities include:

• Investigating HIPAA violations and complaints
• Conducting compliance assessments and audits
• Imposing penalties for non-compliance

The U.S. Department of Justice enforces HIPAA criminal violations.

State Attorneys General have the authority to enforce HIPAA rules. They can file civil actions in federal district courts and impose fines.

Since its founding by Professor Daniel J. Solove in 2010, TeachPrivacy has provided training for hundreds of organizations, boutique to Fortune 500, both nationwide and globally. A leading international expert in privacy law, Solove is a law professor at George Washington University Law School, has authored more than 10 books and more than 50 articles, as well as given lectures around the world. His LinkedIn blog has more than 1 million followers. Click here for more information about Professor Solove.