HIPAA Privacy Essentials

  • 6 topics | 1h 6m
  • Up to 30 languages
  • Transcripts
This course presents an overview of HIPAA (the Health Insurance Portability and Accountability Act), outlining the main components and identifying who is covered by the Act. It examines the privacy provisions under HIPAA as they relate to protected health information (PHI). This course helps employees and business associates of covered entities recognize the key provisions of HIPAA, how their organizations are affected by HIPAA, and how the privacy rules impact them. These course materials and content are for informational purposes only and do not constitute legal advice. Nothing herein, or in the course materials, shall be construed as professional advice as to any particular situation or constitute a legal opinion with respect to compliance with any federal, state, or local laws. Transmission of the information is not intended to create, and receipt does not constitute, an attorney-client relationship. Readers should not act upon this information without seeking professional counsel. The information contained herein is provided only as general information that may or may not reflect the most current legal developments. This information is not provided in the course of an attorney-client relationship and is not intended to constitute legal advice or to substitute for obtaining legal advice from an attorney licensed in your state.


  • identify key areas of concern addressed under the HIPAA Administrative Simplification provisions
  • recognize examples of covered entities using the HIPAA rules
  • recognize examples of the types of companies or organizations that would be considered business associates of a covered entity
  • identify how the Privacy Rule safeguards protected health information (PHI)
  • describe what de-identification of PHI involves and why it's important
  • identify the types of requests individuals may ask of a covered entity or its business associates, relative to their PHI
  • identify the responsibilities of a covered entity and its business associates under HIPAA's Privacy Rule
  • recognize how certain standards within the Privacy Rule affect various situations
  • recognize how the "minimum necessary" concept applies to the use and disclosure of PHI
  • identify the main purpose of the Breach Notification rule
  • recognize the types of consequences an organization may face for failures to comply with its obligations under the Privacy Rule


  • HIPAA's Main Provisions
  • Covered Entities and Business Associates
  • Protected Health Information
  • HIPAA Privacy Rule
  • Authorizations, Minimum Necessary, and Notifications
  • Complaints, Enforcement, and Penalties