This 2009 act was established to expand the scope of the HIPAA Security Rule to cover a Covered Entity’s Business Associates. The HITECH Act contains five goals, ranging from the improvement of quality, safety, and efficiency of healthcare to ensuring a patient’s privacy and security.