HIPAA Resources for Understanding HIPAA, Training Materials, and the Enforcement Process

Discover HIPAA toolkits, compliance companies, checklists, & training & certification resources!

HIPAA for Professionals

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule protects the privacy of individually identifiable health information and the confidentiality provisions of the Patient Safety Rule which protect identifiable information being used to analyze and improve patient safety.
  • Information on standards for electronic health care transactions and code sets, unique health identifiers, and security.
  • Information on the final Privacy Rule which set national standards for the protection of individually identifiable health information by three types of covered entities: health plans, health care clearinghouses, and health care providers who conduct the standard health care transactions electronically.

HIPAA Compliant Toolkits

  • This toolkit is intended to help employers that sponsor group health plans understand their compliance obligations under the Health Insurance Portability and Accountability Act (HIPAA). It also provides sample resources to help employers comply with HIPAA's documentation requirements for their group health plans. Click here to download the comprehensive HIPAA Privacy and Security Compliance Toolkit.
  • Because HIPAA compliance includes a wide variety of things outside of simple HIPAA training, Training-HIPAA.net has created an entire toolkit to help you be sure that your business or entity is in compliance with HIPAA regulations.
  • Davis Wright Tremaine offers HIPAA toolkits for Covered Entities, Business Associates, Financial Institutions, and Cloud Providers.
  • The Compliagent HIPAA toolkit is designed to help providers meet HIPAA rules and regulations and an ideal resources for covering HIPAA compliance needs.
  • The Office of the National Coordinator for Health Information Technology (ONC) developed a downloadable Security Risk Assessment (SRA) Tool. The tool is designed to help healthcare providers conduct a security risk assessment.

HIPAA Compliance Companies

  • HIPAA compliance training and certification from Agio Healthcare. They provided cybersecurity services to digital healthcare assets. They work to ensure patient privacy, security, and safety by protecting PHI and other confidential data, as well as the IT systems and infrastructure on which it is used, transmitted, and stored.
  • HIPAA compliance training and certification from Clearwater Compliance LLC.  Clearwater provides cyber risk management and HIPAA compliance solutions for healthcare providers and their partners, delivering privacy and security solutions to more than 400 customers since its founding in 2009.
  • Using Vanta is the easy way to get SOC 2, HIPAA, or ISO 27001 compliance. Healthcare organisations can automate their security monitoring and get ready for security audits in weeks instead of months using Vanta's SaaS solution.
  • With Laika, manage every facet of compliance in one place with Laika. Intuitive and automated workflows are designed to help manage compliance and pass audits at scale.
  • Compliancy Group provides HIPAA compliance software called, "The Guard" and is simple, cost-effective software that addresses every aspect of HIPAA compliance.
  • HIPAA-compliant software products for growing practises from Jotform.

HIPAA Checklists

Review a HIPAA compliant checklist form the following entities:

Best HIPAA Training & Certification Resources

  • Some excellent training materials are available on the HHS web site.
  • The Ultimate HIPAA Guide: This training resource is very comprehensive including information about certification and checklists.
  • HIPAATraining.com has been providing HIPAA compliance training for over a decade and offers a full range of training and certification for individuals and healthcare organisations.
  • ProHIPPA offers comprehensive online HIPAA training in the form of videos for all healthcare professionals.
  • HIPAA Associates has been providing HIPAA compliance plans, gap analysis, training, and breach reporting for over two decades.
  • HIPAA Exams uses a cloud-based video learning management system with reporting, tracking, and yearly reminders.
  • Training-HIPAA.net has created an entire training toolkit to ensure that a Covered Entity or Business Associate is in compliance with HIPAA regulations.
  • Tier3MD provides HIPAA staff training and recommends that it be done once every 6 months. 
  • Medbridge offers a 5-course online HIPAA training series for hospitals, health systems, private practises, and home health agencies.
  • EasyLama makes it easy to avoid HIPAA violations with training content that is engaging and fully compliant, through interactive bite-sized episodes designed to be watched on any device.
  • Mastery offers training courses to help any healthcare organisation understand HIPAA.
  • HIPAA Compliance for Young Technology Companies: This training resource is focused on very young technology companies including which organisations are impacted by HIPAA, how to know if your organisation is compliant and how do get HIPAA compliant.
  • Senior IT Leaders' Guide to HIPAA: This training is targeted at senior IT professionals and covers the most important areas related to HIPAA compliance.
  • HIPAA Work From Home (WFH) Policy: This is not a training resource, but it can help healthcare workers who are working remotely.
  • HIPAA Compliance and Gmail: It is important for healthcare professionals working remotely to understand that Gmail is not HIPAA compliant out-of-the-box. GSuite tools needs to be properly configured in order to be HIPAA compliant.
  • HIPAA and HITRUST Compliance: This training resource provides information about compliance under HIPAA and HITRUST. It includes information about Covered Entities and internal audits and addresses penalties for noncompliance.
  • Guide to Privacy and Security of Electronic Health Information: This training resource is over 50 pages and contains helpful information about securing PHI in a health care organisation. The audience for this guide are medical practises, but the concepts apply to any healthcare organisation.
  • Security Risk Assessment Videos: These videos address security risk assessments, contingency planning and how to keep PHI confidential.
  • Understanding Patients' Health Information Rights: This training resource only addresses patients' rights in the context of HIPAA, discussing patient access, accounting disclosures, and the right to restrict information.
  • A Reporting Guide For Breach Notifications: This training resource addresses data breaches including the notices that need to be issued and other requirements that have to be addressed after a breach.
  • HIPAA Training Requirements: This overview provides important information about the HIPAA training process.
  • HIPAA Walkthrough Assessment in an Excel: This excel based tool is a helpful resource from UCLA Health that can be used as a checklist to help clinical professionals remain in HIPAA compliance.
  • How HIPAA Applies to You: This training resource provides an overview of HIPAA, Business Associates, enforcement and best practises for compliant infrastructure.

Best Free HIPAA Training & Certificate Resources

  • Free HIPAA Training Video: This training resource is mostly video based and includes examples of how HIPAA impacts healthcare organisations and patients.
  • HIPAA Privacy Training: This training resource is free, but you can pay to take an exam to get certified.
  • EDAPP provides free HIPAA training content on regulations, best practises, threats and remedies. It also included training on privacy, breach and security rules.
  • Accountable offers a free basic HIPAA training module, but more in-depth training requires a monthly subscription.
  • Medscape offers free HIPAA training material, but it requires registering with the website to access most of the content. The content includes quizzes, slides, and supplemental information.
  • HIPAAtrek offers a series of six videos of free HIPAA training including disposing of PHI, patient privacy on social media, preventing phishing, BYOD, and home devices.
  • American Medical Association provides free HIPAA training on achieving HIPAA compliance through effective risk assessment. The short audio lessons and quizzes are paired with an FAQ and HIPAA toolkit.
  • Corsera provides free HIPAA training focusing on the complexities of healthcare security, privacy, compliance and reporting.
  • Biologix provides very low cost HIPAA training.

Learn More About Giva HIPAA Compliance

HIPAA-Compliant HIPAA Basics
HIPAA Basics
HIPAA-Compliant Data Encryption
Data Encryption
HIPAA-Compliant Onsite & Offsite Encrypted Backups
Onsite & Offsite Encrypted Backups
HIPAA-Compliant Physical, Logical & Network Access Controls
Physical, Logical & Network Access Controls
HIPAA-Compliant Vulnerability Management & Logging
Vulnerability Management & Logging
HIPAA-Compliant Defined & Tested Security Policies & Procedures
Defined & Tested Security Policies & Procedures
HIPAA-Compliant SSAE 18 SOC II Type 2 Certification
SSAE 18 SOC II Type 2 Certification
HIPAA-Compliant Security Risk Assessments & Breaches
Security Risk Assessments & Breaches
HIPAA-Compliant Web Apps, Websites & Hosting
Web Apps, Websites & Hosting
HIPAA-Compliant Phone, Mobile & Computer Devices
Phone, Mobile & Computer Devices
HIPAA-Compliant Common Violations, Breaches & Mistakes
Common Violations, Breaches & Mistakes
HIPAA-Compliant Remote Work Conferencing & Telehealth
Remote Work Conferencing & Telehealth
HIPAA-Compliant HIPAA Audits
HIPAA Audits
HIPAA-Compliant Resources & Training Materials
Resources & Training Materials