HIPAA Training: Intro to HIPAA

In this video, we will cover the basics of HIPAA:
what HIPAA is, who needs to abide by the regulations, what is PHI, and more.
Below are links to additional readings on what is covered in the video.


  • Welcome to HIPAA training brought to you by Compliancy Group
  • We have created a series of videos that will educate employees on everything they need to know about HIPAA
  • Employee training provides guidance on the permitted uses and disclosure of protected health information, how to protect that information, and what to do if a breach occurs.
  • The training shouldn’t take too long
  • But be sure to pay close attention because there will be a quiz at the very end.
  • So, What is HIPAA?
  • HIPAA stands for: The Health Insurance Portability and Accountability Act which is a series of national standards that healthcare organizations must have in place in order to safeguard the privacy and security of protected health information (PHI).
  • What is Protected Health Information (PHI)?
  • PHI is any demographic individually identifiable information that can be used to identify a patient.
    • Some common PHI identifiers are listed on the following slide…
  • Now, let’s get into — Who needs to be HIPAA compliant?
    • If you work in healthcare in any capacity, you need to be HIPAA compliant.
    • There are two types of organizations who need to be HIPAA compliant, Covered Entities and Business Associates.
  • Covered Entities are involved in the direct creation of PHI and must be compliant with the full extent of HIPAA regulation.
  • HIPAA regulation defines a covered entity as healthcare providers, health plans, and healthcare clearinghouses involved in the transmission of protected health information (PHI).
  • A business associate is any organization hired by a covered entity (or another business associate) who will encounter PHI over the course of work they’ve been hired to perform.
  • Some common examples of business associates are MSPs, EHR Providers, Medical Billing services, cloud storage providers, attorneys, and shredding services.
  • In the following videos we will discuss, the 3 HIPAA rules, cybersecurity best practices and what is required to become HIPAA compliant.
  • We will get into more detail in the next video — please continue to the next section!