In the U.

TheTax and Regulatory Compliancetopic in the IOFM APS Certification Program covers key U.S. regulations, including the Health Insurance Portability and Accountability Act (HIPAA).Enacted in 1996, HIPAA is designed to protect the privacy and security ofprivate medical records, ensuring that protected health information (PHI) is safeguarded by healthcare providers, insurers, and related entities, including AP departments handling medical-related payments.

Option A (Corporate whistleblower identities): Incorrect. Whistleblower protections are covered under laws like the Sarbanes-Oxley Act, not HIPAA.

Option B (External auditor findings): Incorrect. Auditor findings are related to financial or operational audits, not protected by HIPAA.

Option C (Private medical records): Correct. HIPAA establishes standards to protect PHI, such as patient health records, from unauthorized disclosure.

Option D (Electronic banking information): Incorrect. Banking information is protected under laws like the Gramm-Leach-Bliley Act, not HIPAA.

Reference to IOFM APS Documents: The APS e-textbook underTax and Regulatory Compliancestates, “HIPAA protects private medical records, ensuring the confidentiality of protected health information (PHI) in transactions involving healthcare providers.” The training video mentions HIPAA in the context of AP compliance, noting that AP staff handling medical vendor payments must ensure PHI is secure.