Get Help with HIPAA Compliance

HIPAA Risk Assessment

Need assistance getting through a HIPAA Risk Assessment? Expresso™ - The Risk Assessment Express helps you complete your first HIPAA Risk Assessment in as little as three hours. We give you a "leg up" by automating the NIST seven step risk assessment process. The pre-populated list of threats, vulnerabilities, and business impacts that come with Expresso™ provide a huge time-savings advantage. Best of all, Expresso™ is fully customizable to fit your organization's HIPAA Compliance Program. Watch the Expresso™ Demo Video to find out more...

HIPAA Risk Assessments Fast

HIPAA Regulations

Our HIPAA Regulations have super-handy contextual linking and are always kept up to date. Use the HIPAA Definitions Index to help you find things quickly.


The HITECH ACT made a lasting impact on both the HIPAA Privacy Rule and HIPAA Security Rule. Read our HITECH ACT Summary or browse the HITECH Act text.

More HIPAA Compliance Tools and Resources

HIPAA Survival Guide

The HIPAA Survival Guide assists you with a "forest from the trees" overview of the HIPAA Privacy Rule, HIPAA Security Rule and a general overview of the HITECH Act as it pertains to these Rules. (Versions: Online and PDF)

Try a Module for FREE!

Curious? Try a product on the house and see the quality for yourself. Get our Breach Notification Training module FREE (a $49.95 value) when you Sign-Up for our HIPAA compliance newsletter.

HIPAA Breach Notification

Our HIPAA Breach Notification Framework includes a HIPAA Breach Notification Policy Sample, a HIPAA Breach Notification Letter Sample, and a HIPAA Breach Notification Decision Tree.

HIPAA Business Associate Agreement

For most small practices and businesses this agreement is a 'right out of the box solution'. Just fill in the blanks on the Business Associate Agreement Template, print it out and you are ready to go.

HIPAA Audit Preparation

Be prepared with our HIPAA Audit Training Suite (with modules for general audit, Security Rule Audit, Privacy Rule Audit and Breach Notification Audit)

HIPAA Audit Checklists

Each of our checklist (Privacy Rule Checklist; Security Rule Checklist; Cloud, Social Media & Mobile Checklist) items contain policy statements, processes that underpin each policy and suggested tracking mechanisms to help capture each process results.

Get It All & SAVE BIG!

Our Annual Subscription Plan gives you access to all of our compliance checklists, model policies, frameworks, business associate agreements, training and, best of all, Expresso™. You won't find a better value on the market today!

HIPAA Compliance Videos

Carlos Leyva's videos take a deep dive into HIPAA Risk Mitigation, Agile Compliance, Breach Notifications, Attacking the Privacy Rule, Attacking the Security Rule and more...

Agile Compliance

Our HIPAA Agile Compliance Module helps you start executing a great compliance narrative on day one. We provide supporting "Tracks and Chunks" (i.e. mini-projects plans) to jumpstart your HIPAA Compliance Program.

HSG's Authors

Carlos Leyva: Internet Lawyer. Attorney with broad experience servicing the intersection of technology and regulatory compliance.

Deborah Leyva is a Registered Nurse with extensive experience in healthcare, technology and law/policy.

Top Healthcare Blogs

Stay up to date with out list of Top Healthcare Blogs.

HSG's Community

Carlos Leyva's Blog
Deborah Leyva's Blog
Our Newsletter Archive