Resources for Understanding HIPAA, Training Materials, and the Enforcement Process

Discover HIPAA toolkits, compliance companies, checklists, & training & certification resources!

HIPAA for Professionals

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule protects the privacy of individually identifiable health information and the confidentiality provisions of the Patient Safety Rule which protect identifiable information being used to analyze and improve patient safety.
  • Information on standards for electronic health care transactions and code sets, unique health identifiers, and security.
  • Information on the final Privacy Rule which set national standards for the protection of individually identifiable health information by three types of covered entities: health plans, health care clearinghouses, and health care providers who conduct the standard health care transactions electronically.

HIPAA Compliant Toolkits

  • This toolkit is intended to help employers that sponsor group health plans understand their compliance obligations under the Health Insurance Portability and Accountability Act (HIPAA). It also provides sample resources to help employers comply with HIPAA's documentation requirements for their group health plans. Click here to download the comprehensive HIPAA Privacy and Security Compliance Toolkit.
  • Because HIPAA compliance includes a wide variety of things outside of simple HIPAA training, has created an entire toolkit to help you be sure that your business or entity is in compliance with HIPAA regulations.
  • Davis Wright Tremaine offers HIPAA toolkits for Covered Entities, Business Associates, Financial Institutions, and Cloud Providers.
  • The Compliagent HIPAA toolkit is designed to help providers meet HIPAA rules and regulations and an ideal resources for covering HIPAA compliance needs.
  • The Office of the National Coordinator for Health Information Technology (ONC) developed a downloadable Security Risk Assessment (SRA) Tool. The tool is designed to help healthcare providers conduct a security risk assessment.

HIPAA Compliance Companies

  • HIPAA compliance training and certification from Agio Healthcare. They provided cybersecurity services to digital healthcare assets. They work to ensure patient privacy, security, and safety by protecting PHI and other confidential data, as well as the IT systems and infrastructure on which it is used, transmitted, and stored.
  • HIPAA compliance training and certification from Clearwater Compliance LLC.  Clearwater provides cyber risk management and HIPAA compliance solutions for healthcare providers and their partners, delivering privacy and security solutions to more than 400 customers since its founding in 2009.
  • Using Vanta is the easy way to get SOC 2, HIPAA, or ISO 27001 compliance. Healthcare organizations can automate their security monitoring and get ready for security audits in weeks instead of months using Vanta's SaaS solution.
  • With Thoropass, manage every facet of compliance in one place. Intuitive and automated workflows are designed to help manage compliance and pass audits at scale.
  • Compliancy Group provides HIPAA compliance software called, "The Guard" and is simple, cost-effective software that addresses every aspect of HIPAA compliance.
  • HIPAA-compliant software products for growing practices from Jotform.

HIPAA Checklists

Review a HIPAA compliant checklist form the following entities:

Best HIPAA Training & Certification Resources

  • Some excellent training materials are available on the HHS web site.
  • The Ultimate HIPAA Guide: This training resource is very comprehensive including information about certification and checklists.
  • has been providing HIPAA compliance training for over a decade and offers a full range of training and certification for individuals and healthcare organizations.
  • ProHIPPA offers comprehensive online HIPAA training in the form of videos for all healthcare professionals.
  • HIPAA Associates has been providing HIPAA compliance plans, gap analysis, training, and breach reporting for over two decades.
  • HIPAA Exams uses a cloud-based video learning management system with reporting, tracking, and yearly reminders.
  • has created an entire training toolkit to ensure that a Covered Entity or Business Associate is in compliance with HIPAA regulations.
  • Tier3MD provides HIPAA staff training and recommends that it be done once every 6 months. 
  • Medbridge offers a 5-course online HIPAA training series for hospitals, health systems, private practices, and home health agencies.
  • EasyLama makes it easy to avoid HIPAA violations with training content that is engaging and fully compliant, through interactive bite-sized episodes designed to be watched on any device.
  • Mastery offers training courses to help any healthcare organization understand HIPAA.
  • HIPAA Compliance for Young Technology Companies: This training resource is focused on very young technology companies including which organizations are impacted by HIPAA, how to know if your organization is compliant and how do get HIPAA compliant.
  • Senior IT Leaders' Guide to HIPAA: This training is targeted at senior IT professionals and covers the most important areas related to HIPAA compliance.
  • HIPAA Work From Home (WFH) Policy: This is not a training resource, but it can help healthcare workers who are working remotely.
  • HIPAA Compliance and Gmail: It is important for healthcare professionals working remotely to understand that Gmail is not HIPAA compliant out-of-the-box. GSuite tools needs to be properly configured in order to be HIPAA compliant.
  • HIPAA and HITRUST Compliance: This training resource provides information about compliance under HIPAA and HITRUST. It includes information about Covered Entities and internal audits and addresses penalties for noncompliance.
  • Guide to Privacy and Security of Electronic Health Information: This training resource is over 50 pages and contains helpful information about securing PHI in a health care organization. The audience for this guide are medical practices, but the concepts apply to any healthcare organization.
  • Security Risk Assessment Videos: These videos address security risk assessments, contingency planning and how to keep PHI confidential.
  • Understanding Patients' Health Information Rights: This training resource only addresses patients' rights in the context of HIPAA, discussing patient access, accounting disclosures, and the right to restrict information.
  • A Reporting Guide For Breach Notifications: This training resource addresses data breaches including the notices that need to be issued and other requirements that have to be addressed after a breach.
  • HIPAA Training Requirements: This overview provides important information about the HIPAA training process.
  • How HIPAA Applies to You: This training resource provides an overview of HIPAA, Business Associates, enforcement and best practices for compliant infrastructure.

Best Free HIPAA Training & Certificate Resources

  • Free HIPAA Training Video: This training resource is mostly video based and includes examples of how HIPAA impacts healthcare organizations and patients.
  • HIPAA Privacy Training: This training resource is free, but you can pay to take an exam to get certified.
  • SC training provides free HIPAA training content on regulations, best practices, threats and remedies. It also included training on privacy, breach and security rules.
  • Accountable offers a free basic HIPAA training module, but more in-depth training requires a monthly subscription.
  • Medscape offers free HIPAA training material, but it requires registering with the website to access most of the content. The content includes quizzes, slides, and supplemental information.
  • HIPAAtrek offers a series of six videos of free HIPAA training including disposing of PHI, patient privacy on social media, preventing phishing, BYOD, and home devices.
  • American Medical Association provides free HIPAA training on achieving HIPAA compliance through effective risk assessment. The short audio lessons and quizzes are paired with an FAQ and HIPAA toolkit.
  • Corsera provides free HIPAA training focusing on the complexities of healthcare security, privacy, compliance and reporting.
  • Biologix provides very low cost HIPAA training.
Request a Live Demo
See It In Action
Assess Your Needs
Select a Tool
Try Giva's 30 Day Trial
Sign Up Today