The Health Insurance Portability and Accountability Act (HIPAA) was passed in 1996 to protect patients' medical records and personal health information. HIPAA applies to both verbal and written information as well as digital records. Healthcare providers are responsible for ensuring patient information is only disclosed to those who are legally authorized to access it, such as identification data, clinical notes, treatment records, and billing information. Violations of HIPAA privacy rules can result in penalties from $100 to $1.5 million per violation depending on the level of negligence. As healthcare workers, protecting patient privacy and maintaining trust is important.