What is HIPAA?

HIPAA stands for the Health Insurance Portability and Accountability Act and is a U.S. federal law enacted in 1996 as an attempt at incremental healthcare reform. It was subsequently revised in 2009 with the ARRA/HITECH Act and again in 2013 with the Omnibus Rule.
HIPAA’s intent was to reform the healthcare industry by reducing costs, simplifying administrative processes and burdens, and improving the privacy and security of patients’ health information. Today HIPAA compliance mainly revolves around the last item: protecting the privacy and security of patients’ health information.
Modax offers a full range of HIPAA compliance products from training and certification for an individual to full HIPAA compliance for organizations. We specialize in helping individuals and small to midsize organizations get HIPAA compliant in the most affordable, fastest, and easiest way possible.

Who Needs To Comply With HIPAA?

Any organization or person who works in or with the healthcare industry or who has access to protected health information.

HIPAA compliance for an organization revolves around protecting the privacy and security of Protected Health Information (PHI) that the organization has or will have access to. PHI is any information that can be connected to an individual’s health condition.
Organizations looking to comply with the HIPAA regulations first have to determine which regulations they have to comply with.

 There are Two Distinct and Separate Regulations Under HIPAA

  • HIPAA Privacy – Safeguards for keeping protected health information safe from a people, administrative, and contractual standpoint
  • HIPAA Security – Safeguards for keeping protected health information specifically in electronic form (computers, networks, email, software, electronic transmissions, etc) safe from disasters, hackers, and electronic theft.

Request A Consultation

Submit Request

3 Parts to Becoming HIPAA Compliant

  • Providing HIPAA Awareness Training to all employees of the organization that have access to PHI
  • Implementing formal documents and controls for the organization to protect and safeguard PHI
  • Training of a compliance officer (someone in the organization that is going to take responsibility for HIPAA at your organization)

HIPAA Training

What We Cover
  • Family Educational Rights & Privacy Act (FERPA)
  • Federal Personally Identifiable Information (Federal PII)
  • Data Retention
  • Ethics
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Personally Identifiable Information (PII) & Social Security Numbers
  • Red Flag Rule