This document discusses the importance of patient privacy and confidentiality in healthcare. It notes that with electronic medical records, all staff must actively protect patient health information from unauthorized access or disclosure. Protected health information includes information recorded, stored or processed for medical decision making. The Health Insurance Portability and Accountability Act, or HIPAA, was passed in 1996 to protect privacy and security of patient health information. The document outlines policies, procedures and systems to ensure privacy, including privacy training, access monitoring, and sanctions for violations.