U.S. flag

An official website of the United States government

HIPAA Rules for telehealth technology

Find out about HIPAA Rules and guidance on compliance for telehealth.

On this page:

Technology considerations

HIPAA-compliant technology

The HIPAA Rules establish standards to protect patients’ protected health information. All telehealth services provided by covered health care providers and health plans must comply with the HIPAA Rules. Covered health care providers and health plans must use technology vendors that comply with the HIPAA Rules and will enter into HIPAA business associate agreements in connection with the provision of their video communication products or other remote communication technologies for telehealth.

OCR released guidance to help covered health care providers and health plans understand how they can use remote communication technologies for audio-only telehealth. For other OCR guidance related to telehealth, you can visit this page.

Telehealth policy

Federal legislation continues to expand and extend telehealth services.

Medicare and Medicaid policies

Expanding telehealth care for Medicare and Medicaid patients.