This document discusses the history and requirements of the Health Insurance Portability and Accountability Act (HIPAA). HIPAA was first passed in 1996 to establish privacy standards for sharing patient health information. It was updated in 2003 and 2005 to provide more protections for patient privacy and security of records. HIPAA now requires administrative, physical and technical security safeguards to ensure compliance. Proper implementation of procedures, safeguards, firewalls and monitoring are necessary to comply with HIPAA and protect patient privacy in an increasingly digital healthcare system.