HIPAA privacy rules are strict and health plans and providers in the U.S. are required to follow these rules for services that they may provide internationally. However, outside of the U.S., HIPAA does not apply to foreign hospitals and doctors.

HIPAA business associate agreements should be in place with Global Health Care vendors stating these U.S requirements. Every effort should be made to assure that contracts with hospitals and other health care providers in the host country comply with HIPAA standards. Foreign health care providers supported by U.S. Global Health Care vendors also need to address these privacy issues but they are not bound by US laws.