Business Associates HIPAA Compliance Toolkit


The Health Insurance Portability and Accountability Act (HIPAA) of 1996 had a major revision in 2013, commonly known as the HITECH edition of HIPAA.  Quite simply, this update brought Business Associates fully onboard with HIPAA compliance and thus, liability for the secure protection of Protected Health Information, (PHI).  This Toolkit is designed to help you meet those standards through the creation your own specific HIPAA Compliance for Business Associates manual.

Among the privacy and security topics included -

  • Privacy officer job description
  • Protected Health Information (PHI) policy
  • Security Rules and Risk Management
  • Emailing/faxing PHI
  • Breach Notification Requirements
  • Business Associates subcontractor agreement form
  • Workforce Training Policies
  • Open Door Policy
  • Non-retaliation Policy
  • Security Risk Assessment tool
  • Emergency Preparedness Plan


After your HIPAA Compliance for Business Associates manual has been created, ask your legal counsel to review it. Government compliance regulations change over time and regulations may differ from state to state. In some cases, state and local regulations may supersede specific sections of the federal HIPAA regs.  A legal review is critical before production and distribution.

This manual template is current as of 2019. Changes in laws, rules, and regulations may require periodic updates to this manual. In addition, changes to your Business might warrant updates to your HIPAA policies and procedures and staff training. An example: if your Business implements an entirely new computer system, this would necessitate that all workforce members receive new HIPAA training.


Thank you for for considering the HIPAA Compliance for Business Associates Toolkit. We are certain you will find the manual an invaluable tool in building your practice's compliance program.

We are available to help you with any compliance questions or concerns you may have to facilitate your implementation of your compliance program. If you have any questions, please contact me at 303-586-9390.

We look forward to hearing from you, and hope that you tell other practice administrators and physicians about this product if it exceeds your expectations.

Marcia L. Brauchler

Customize Toolkit

The Business Associates HIPAA Compliance Toolkit is customized to your particular business. Once your purchase is complete, you will receive an email with your documents.

Please ensure that you review your entered information carefully, as you will not be able to modify it in your generated documents.

I acknowledge that additional customization and legal review is necessary to ensure a HIPAA-compliant manual.

I acknowledge that state law regarding HIPAA laws is outside the scope of the manual.

I understand and accept the terms and conditions of the copyright.