Filing a Complaint — Corrective action / RA

Full description

Navigate to: Filing a Complaint Complaint Process File a Complaint Online What to Expect File a Patient Safety Confidentiality Complaint Filing a Health Information Privacy Complaint You may file a complaint with the Office for Civil Rights (OCR) if you believe:A HIPAA covered entity or its business associate violated your (or someone else’s) health information privacy rights or committed another violation of the Privacy, Security, or Breach Notification Rules.A substance use disorder (SUD) treatment program violated your confidentiality rights under 42 CFR part 2 (called “Part 2”).OCR can investigate health information privacy complaints against covered entities (health plans, health care clearinghouses, or health care providers that conduct certain transactions electronically) and their business associates. OCR can also investigate complaints of Part 2 violations against a Part 2 program or its qualified service organization; a lawful holder of Part 2 records, such as a HIPAA covered entity or its business associate; or another person holding Part 2 records. Complaint Process Anyone can file a complaint if they believe there has been a violation of the HIPAA Rules or Part 2. Learn what you'll need to submit your complaint online or in writing. File a Complaint Online File your HIPAA or Part 2 complaint electronically via the OCR Complaint Portal. Filing a Patient Safety Confidentiality Complaint Read about the Patient Safety Confidentiality Act and Rule and how to file a complaint online or in writing. What to Expect Learn how OCR investigates your complaint and what happens after the investigation is complete. Content last reviewed February 13, 2026