Is there any implication of HIPAA for Canadian companies directly involved in health insurance especially insurance companies, clinics and drug stores?
Is there legislation in Canada similar to HIPAA? If yes, where can I get complete information on it?
HIPAA would apply to Canadian organizations that do business in the U.S. or interact with the U.S. Centers for Medicare and Medicaid Services or other U.S. covered entities. I would recommend getting legal counsel in this area as well as to find out what other similar laws Canada has before proceeding any further. In the meantime, you can check out this Web site on the Personal Information Protection and Electronic Documents Act in Canada that has HIPAA-like personal information protection requirements.
Many thanks to Rebecca Herold with DelCreo, Inc. for her assistance on this question.
For more information on this topic, visit these other SearchSecurity.com resources:
Ask the Expert: When to seek legal consultation for HIPAA
Ask the Expert: Who will enforce HIPAA?
Ask the Expert: Where to find statement of HIPAA security standards
This was first published in February 2003