HIPAA Handbooks

  • Privacy and security training for new and seasoned staff
  • 11 staff/setting focus areas
  • Education on protecting PHI
  • New HITECH Act changes
  • Discounts on bulk purchases



  • Role-based training using real-life case scenarios
  • Test-your-knowledge exercises with remediation
  • Post-course test to document staff participation


Other HIPAA Resources

  • Hot-topic audio conferences
  • Books on privacy and security
  • Newsletters
  • e-Newsletter
  • Videos


Archive for August, 2011


NFL quarterback believes in HIPAA

Posted by: | Comments (3)
Email This Post Print This Post

We never thought we’d link to ESPN on this blog, but lo and behold, we found a way.

Peyton Manning, future Hall of Fame quarterback for the Indianapolis Colts, cited HIPAA when approached by reporters about the status of an ailment.

“I don’t know what HIPAA stands for,” ESPN reported Manning telling the media, “but I believe in it and I practice it.”

And kudos to ESPN for linking to the Office for Civil Rights website on HIPAA.

Hey Peyton — it’s Health Insurance Portability and Accountability Act, for the record. We bet Tom Brady knows that.

Categories : HIPAA privacy
Comments (3)

HIPAA Update popular blog posts

Posted by: | Comments (0)
Email This Post Print This Post

So what has interested our blog visitors in the last 30 days? Check out the numbers for yourself:

  1. HIPAA auditor involved in own breach – 619 views
  2. OCR’s HIPAA audit hot-button topics revealed – 601 views
  3. AHIMA: Proposed HIPAA access requirement a significant burden – 516 views
  4. Breaking down OCR’s HIPAA hotspots – 491 views
Categories : HIPAA News
Comments (0)

Is it HIPAA compliant for therapists to pull their patient files from a general filing cabinet that contains all the patient files? They would see the names of other patients plus access to other patients information if they accidentally pull the wrong chart.

Categories : HIPAA Q&A
Comments (6)

Follow HIPAA Update on Twitter!

Posted by: | Comments (0)
Email This Post Print This Post

We’ve gone Tweeting.

You can now follow HIPAA Update, the blog managed by HCPro, Inc., which also produces this weekly e-newsletter, on Twitter.

Catch snapshots of our HIPAA privacy and security compliance news and tips on Twitter by following us!

Comments (0)

HIPAA Q&A: PHI on website

Posted by: | Comments (1)
Email This Post Print This Post

Q. One of my colleagues made a website accessible to invitees only. He plans to upload a spreadsheet that contains clients’ names and diagnoses. The spreadsheet will be password-protected, but I believe it will compromise our HIPAA compliance nonetheless. Am I correct?

A. Posting patient-identifiable health information on any website, even if it is password-protected, could result in a breach of patient confidentiality. This situation requires a detailed review by your organization’s compliance officer before your colleague proceeds any further.

Editor’s note: Mary D. Brandt, MBA, RHIA, CHE, CHPS, a nationally recognized expert on patient privacy, information security, and regulatory compliance, answered this question. She is associate executive director of HIM at Scott & White Healthcare in Temple, TX. Advice given is general. Readers should consult professional counsel for specific legal, ethical, or clinical questions.

Comments (1)