The Health Insurance Portability and Accountability Act (HIPAA) of 1996 established federal regulations that require all organizations that manage Protected Health Information (PHI) to safeguard the privacy and security of their data. A HIPAA security rule regarding electronic PHI was introduced in 2005, essentially focused on securely protecting data confidentiality and integrity. The information must also be available and retrievable.