How many controls does HIPAA Security Rule have?

HIPAA Security Rule contains 37 controls organized across 5 domains.

Where does HIPAA Security Rule apply?

HIPAA Security Rule is applicable in United States. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does HIPAA Security Rule map to?

HIPAA Security Rule has control-to-control mappings with 466 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with HIPAA Security Rule compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

HIPAA Security Rule

Health Insurance Portability and Accountability Act security standards for protecting electronic protected health information (ePHI).

Domains

Administrative Safeguards

Organizational Requirements

Physical Safeguards

Technical Safeguards

Policies, Procedures and Documentation

Implementation Guides

HIPAA Security & PrivacyStep-by-step guide →

Frequently Asked Questions

Map HIPAA Security Rule to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform