HIPAA incorporates a number of different elements, including the security rule that focuses on e-PHI. The security rule defines a series of safeguards that are loosely designated as administrative, physical, and technical. These are inter-linked to provide layers of security. For example, if access to the systems processing e-PHI were strictly and correctly enforced 100% of the time, it would not be necessary to restrict access to the building (with respect to e-PHI). However, having both of these safeguards is insurance against one of these failing or being subverted.