Thought I should share a post I published discussing the question of HIPAA Privacy and Security rules being linked [excerpt]

…A good starting point for examining the linkage between the Privacy and Security Rule begins with those responsible for the development and application of the Rules. The Department of Health and Human Services has stated that, “…in preparing the final Security Rule, the Department is working to ensure the Security Rule requirements for electronic information systems work hand in glove (emphasis added) with any relevant requirements in the Privacy Rule”[1]. Health and Human Services has also stated that, “As many commenters recognized, security and privacy are inextricably linked (emphasis added). The protection of the privacy of information depends in large part on the existence of security measures to protect that information.”[2] To be sure, federal regulators intend for Privacy and Security Rules to work in conjunction with one another.” Read more at http://www.dgpeterson.com

Grant Peterson, J.D.