In 1996, the Health Insurance Portability and Accountability Act (HIPAA) defined standards for safeguarding all patients' sensitive and confidential data. The act requires health insurance providers to enforce strict privacy and security rules, each designed to protect the patient and all electronically protected health information, known as ePHI.