What is HIPAA and Why Does It Matter to You?

Understanding HIPAA: Your Health Privacy Shield

HIPAA—the Health Insurance Portability and Accountability Act—was signed into law in 1996 and has become the cornerstone of health data privacy in the United States. But what does it actually mean for you?

What HIPAA Protects

HIPAA’s Privacy Rule protects your “Protected Health Information” (PHI), which includes:

• Medical records and test results
• Prescription information
• Conversations with your doctors
• Billing and insurance information
• Any information that can identify you combined with health data

Who Must Follow HIPAA

HIPAA applies to “covered entities”:

• Healthcare providers (doctors, hospitals, clinics)
• Health insurance companies
• Healthcare clearinghouses
• Business associates of the above

What HIPAA Does NOT Cover

This is where many people get confused. HIPAA does not apply to:

• Most fitness apps and wearables
• Many health websites
• Employers (outside of their health plans)
• Schools and education records
• Law enforcement under certain circumstances

Why This Matters for Your Personal Records

When you store your own health records on your personal device, HIPAA doesn’t govern that data—you’re in control. This is why choosing an app with strong security practices matters.

VertexMD is built with HIPAA-aligned practices:

• 256-bit AES-GCM encryption
• On-device storage by default
• No access to your data without your explicit consent
• End-to-end encryption for cloud sync

Taking Control

Understanding your privacy rights empowers you to make better decisions about your health data. Ask questions, read privacy policies, and choose tools that respect your privacy.