HIPAA Certification Training
HIPAA Advice

Best HIPAA Training

Without doubt, the best HIPAA training is training that goes beyond the requirements of the Privacy and Security Rules so that Covered Entities and Business Associates have fully HIPAA-aware workforces that can identify potential HIPAA […]


CISA Warns of High-severity Vulnerability in Hillrom Welch Allyn Cardio Products

The DHS’ Cybersecurity and Infrastructure Security Agency (CISA) has issued a security alert warning healthcare providers about a high-severity vulnerability that affects certain Hillrom Welch Allyn cardio products. The vulnerability is an authentication bypass issue, […]

How Often is HIPAA Training Required?
HIPAA Advice

HIPAA Training for Employees

There are two standards in the Health Insurance Portability and Accountability Act that directly relate to HIPAA training for employees – the training standard of the Privacy Rule´s Administrative Requirements (45 CFR § 164.530) and […]

HIPAA and COVID-19 Vaccination Information
HIPAA Advice

HIPAA Training for Nurses

There is no question that HIPAA training for nurses is mandated by the Administrative Requirements of the HIPAA Privacy Rule. However, the content of HIPAA training for nurses should go further than the minimum requirements […]

How Long Should You Keep Employee HIPAA Training Records?
HIPAA Advice

Basic HIPAA Training

Because of some confusion about the HIPAA training requirements, many Covered Entities and Business Associates provide basic HIPAA training to all members of their workforces. While this is a good idea because it ensures everyone […]

HIPAA compliance for Medical Practices
HIPAA Advice

HIPAA Privacy Training

HIPAA privacy training is sometimes confused with HIPAA Privacy Rule training which requires Covered Entities to train members of its workforce on policies and procedures “with respect to PHI […] as necessary and appropriate for […]

HIPAA Certification Training
HIPAA Advice

HIPAA Training for Managers

The issue of HIPAA training for managers is complex because, although the Security Rule states management must be included in security awareness training (45 CFR § 164.308), there is no guidance provided on what other […]