Assessment tool
HIPAA AI Governance Framework for Small Clinics
A practical AI governance framework for small clinics adopting ambient scribes, scheduling assistants, and AI coding tools under HIPAA.
Resources
HIPAA resources and templates for healthcare teams.
This library should help readers move between education and evaluation. It groups free tools, vendor research, PHI explainers, comparison content, and learning-center pages without turning each area into a different visual system.
Free tools and templates
Resources that can stand alone before a clinic starts a trial.
Assessment tool
HIPAA AI Tool Vetting Checklist
A structured checklist for evaluating AI tools before allowing staff to use them in patient care or administrative contexts involving PHI. Covers BAA availability, data residency, training data policy, security certifications, subprocessor disclosure, data retention and deletion terms, and incident notification procedures. Includes scoring rubric and minimum requirements for HIPAA-eligible use.
Assessment tool
HIPAA Annual Compliance Audit Checklist
A structured annual audit checklist covering all eight elements of a HIPAA compliance program: risk analysis, risk management, policies and procedures review, workforce training, BAA register review, access review, incident log review, and NPP review. Each element has specific action items, responsible role, and regulatory citation. Includes evidence binder section.
Assessment tool
HIPAA Medical Billing Compliance Checklist
A billing-specific HIPAA compliance checklist covering TPO, BAAs, minimum necessary, statement design, and offshore billing considerations.
Template
HIPAA Breach Notification Template
A breach notification letter template with all required elements under 45 CFR § 164.404(c): breach description, types of PHI involved, steps individuals should take, what the covered entity is doing, and contact information. Includes a checklist for 500+ vs. <500 individual notification paths and guidance on media notification under 45 CFR § 164.406.
Quick reference
HIPAA Covered Entity Determination Guide
A decision-tree guide that walks practice administrators through 45 CFR § 160.103 to determine covered entity status.
Assessment tool
HIPAA Gap Analysis Scorecard
A self-assessment scorecard covering the eight administrative safeguard implementation specifications under 45 CFR § 164.308, plus physical and technical safeguards categories. Each section has 3–5 yes/no questions with weighted scoring. Output is a numeric score, color-coded risk level, and prioritized remediation order.
Assessment tool
HIPAA Incident Classification Tree
A structured decision tree for classifying security and privacy incidents under HIPAA. Covers the security vs. privacy distinction, PHI involvement, breach vs. impermissible disclosure vs. near-miss, the three breach exceptions, the four-factor risk assessment, and required notification actions with timelines. Designed for front-line staff and Privacy Officers.
Quick reference
HIPAA-Compliant Marketing Checklist for Clinics
A practical checklist that walks clinic marketers through HIPAA's marketing rules, authorization requirements, and the 2022/2024 tracking technology guidance.
Assessment tool
HIPAA Medical Records Retention Schedule
A state-by-state table of adult medical records retention requirements, minor records retention periods, mental health records where different, and HIPAA compliance documentation retention (6 years per 45 CFR § 164.530(j)). Structured as a decision tool for practice administrators managing retention schedules.
Quick reference
HIPAA New Practice Startup Checklist
A 60-item phased checklist that walks new covered entities through HIPAA setup from pre-opening through the 90-day review.
Assessment tool
HIPAA Patient Records Request Log
A ready-to-use log template for tracking patient records requests under 45 CFR § 164.524, including required fields, fees, and denial handling.
Assessment tool
HIPAA Physical Security Audit Checklist
A room-by-room audit checklist covering facility access controls, workstation security, device and media controls, visitor management, and disposal procedures for small clinics.
Quick reference
HIPAA Remote Work & BYOD Policy Template
A policy template covering remote work eligibility, approved devices, required configuration, acceptable use, lost device reporting, and termination of remote access for HIPAA covered entities.
Quick reference
HIPAA Staff Training Quiz Template
A 20-question multiple-choice quiz covering PHI identification, minimum necessary standard, patient rights, breach identification and reporting, safeguards, BAA basics, and role-appropriate scenarios. Includes answer key with regulatory citations, scoring rubric, and instructions for documenting completion.
Assessment tool
HIPAA State Law Compliance Checklist
A structured checklist for 10 high-priority states covering state-specific breach notification deadlines, additional consent requirements beyond HIPAA, mental health records protections, genetic information restrictions, and state AG contact information. Helps multi-state and single-state practices identify where their HIPAA program needs state-specific additions.
Assessment tool
HIPAA Texting Policy Template
A policy template covering approved secure messaging platforms, prohibited consumer apps, patient consent for SMS, acceptable appointment-reminder content, staff-to-staff messaging, and retention.
Assessment tool
HIPAA Vendor Security Questionnaire
A structured 30-question security questionnaire to send to potential business associates before sharing PHI. Covers BAA terms, security certifications, subprocessors, data handling, access controls, incident response, and termination. Includes scoring rubric and guidance on BAA negotiation.
Assessment tool
HIPAA Workforce Sanctions Log Template
A structured sanctions log with fields for date of incident, workforce member role, description of violation, policy violated, sanctions applied, date resolved, and documentation attached. Includes a sanctions severity rubric (verbal warning through termination) and a retention guide aligned with 45 CFR § 164.530(j).
Assessment tool
PHI Disposal & Destruction Tracking Log
A printable and digital tracking log clinics use to record every PHI destruction event with witness signatures and method details.
Assessment tool
HIPAA AI Use Policy Template
A ready-to-adapt HIPAA AI use policy for medical clinic staff. Covers approved tools, PHI prohibitions, BAA requirements, the Approved Tools Registry, and incident reporting procedures.
Quick reference
HIPAA Annual Training Log Template
A complete HIPAA annual training log template for medical clinics. Includes header fields, the attendance and attestation table, a topics-covered checklist, and guidance on 6-year retention — structured exactly as OCR expects to see it.
Assessment tool
BAA Termination Checklist
A step-by-step checklist for offboarding a vendor under HIPAA. Covers pre-termination planning, access revocation, PHI return and destruction, written certification, and post-termination documentation updates.
Assessment tool
HIPAA Complaint Response Template
A complete HIPAA complaint response template for covered entities. Includes a complaint intake form, patient acknowledgment letter, investigation documentation form, outcome notice, and corrective action tracker — all in one downloadable resource.
Assessment tool
HIPAA Risk Remediation Tracker
A tracker template for converting HIPAA risk analysis findings into prioritized remediation tasks with owner, due date, status, and evidence documentation. Includes risk level legend, sample row, and status key.
Assessment tool
HIPAA Social Media Policy Template
A one-page HIPAA social media policy template clinic administrators can adapt and distribute to staff. Covers PHI prohibitions, patient photo consent, responding to patient comments, account access controls, and enforcement.
Quick reference
Stark Law Self-Referral Checklist
A quick self-assessment for physician-owned clinics to identify potential Stark Law exposure. Covers ownership interests, compensation arrangements, ancillary services, and key statutory exceptions to discuss with legal counsel.
Assessment tool
HIPAA Role Access Matrix
A HIPAA access control role matrix template for small medical clinics, with six pre-defined roles, per-system permission levels, access review date fields, and minimum necessary justification documentation.
Assessment tool
HIPAA Access Review Checklist
A quarterly HIPAA access review checklist for small medical clinics covering ePHI system access grants, excess access identification, termination verification, and access review documentation.
Assessment tool
HIPAA Annual Review Calendar
Month-by-month HIPAA compliance calendar for small medical clinics, covering annual, quarterly, and monthly review obligations with owner and evidence tracking.
Template
HIPAA Compliance Budget Planner
A HIPAA compliance budget planner for small medical clinics covering software, training, risk analysis, BAA legal review, breach response reserve, and staff time costs — with pre-built scenarios for 5, 10, and 25-staff practices.
Assessment tool
HIPAA Evidence Binder Checklist
A structured HIPAA evidence binder checklist for small medical clinics covering 7 document sections, filename conventions, retention matrix, and a 2-hour initial setup guide.
Assessment tool
HIPAA Incident Triage Worksheet
A three-part HIPAA incident triage worksheet covering initial facts intake, 4-factor risk assessment, escalation decision tree, and evidence log for small medical clinics.
Assessment tool
HIPAA Offboarding Checklist
A structured HIPAA offboarding checklist for medical clinics covering same-day ePHI access revocation, device retrieval, physical access removal, email handling, and final attestation.
Template
HIPAA Software Comparison Scorecard
A structured scoring matrix for comparing HIPAA compliance software across BAA coverage, pricing model, audit logging, incident tracking, vendor management, training, and support — with five tool columns for side-by-side comparison.
Assessment tool
HIPAA Task Management Maturity Scorecard
A 5-level maturity rubric for small clinic HIPAA compliance programs, scoring task ownership, evidence practices, vendor oversight, training, incident response, and access management.
Assessment tool
HIPAA State-Law Overlay Matrix
A comparison matrix of federal HIPAA requirements versus California CMIA, Texas HB 300, and New York SHIELD Act obligations across training, breach notification, patient rights, and records retention.
Assessment tool
HIPAA Minimum Necessary Decision Log
A HIPAA minimum necessary decision log for small medical clinics, with a structured template for recording each access decision by role, PHI type, purpose, and justification — plus pre-filled examples for front desk, billing, MA, provider, and administrator roles.
Template
OCR Inquiry Readiness Packet
An OCR inquiry readiness packet for small medical clinics covering evidence binder structure, 24-hour preservation actions, investigation response roles, common OCR document requests, and a counsel handoff memo template.
Quick reference
PHI Workflow Audit Worksheet
A structured 5-workflow PHI audit worksheet for small medical clinics, identifying the systems involved, PHI fields transmitted, who has access, current safeguards, and gaps requiring remediation.
Assessment tool
HIPAA Policy Review Calendar
A 12-month HIPAA policy review calendar for small medical clinics, pre-populated with Security Rule administrative safeguard policies, annual review assignments, owner fields, and attestation deadline tracking.
Template
Multi-Location HIPAA Rollout Plan
A structured HIPAA compliance rollout plan for multi-location medical practices, covering site assessment, local owner designation, shared vs. location-specific compliance tasks, and a 12-week milestone tracker.
Assessment tool
HIPAA Tabletop Exercise Script
A facilitated tabletop exercise script for small medical clinics covering three HIPAA incident scenarios: lost device, misdirected fax, and unauthorized EHR access — with participant roles, discussion questions, and an after-action review template.
Assessment tool
Telehealth Compliance Workflow Checklist
A HIPAA telehealth compliance checklist for small medical clinics covering pre-session platform verification, patient consent, recording policy, cross-state issues, device requirements, incident reporting, and quarterly review.
Assessment tool
Vendor BAA Renewal Review Checklist
A HIPAA vendor BAA renewal review checklist for small medical clinics covering BAA expiry, subprocessor changes, AI feature updates, security posture, incident history, and the decision to renew, revise, or terminate.
Quick reference
HIPAA Access Log Template
Download a HIPAA access log template for small medical clinics. Covers audit control requirements of 45 CFR §164.312(b) and activity review requirements of §164.308(a)(1)(ii)(D). Includes both electronic and manual log formats.
Quick reference
Free HIPAA Authorization Form Template
Download a HIPAA authorization form template for uses and disclosures requiring patient consent: marketing, research, psychotherapy notes, and sale of PHI. Covers 45 CFR §164.508.
Quick reference
HIPAA BAA Template
Download a clinic-side HIPAA BAA evaluation guide and negotiation checklist. Covers what to require from vendors, red flags in vendor-drafted agreements, and a BAA tracker for active relationships.
Quick reference
HIPAA Contingency Plan Template
Download a HIPAA contingency plan template for small medical clinics. Covers all five required components of 45 CFR §164.308(a)(7): data backup, disaster recovery, emergency mode operations, testing, and applications criticality analysis.
Quick reference
HIPAA Data Backup Plan Template
Download a HIPAA data backup plan template for small medical clinics. Covers the required specification of 45 CFR §164.308(a)(7)(ii)(A) including backup frequency, retention, restoration testing, and offsite storage.
Quick reference
HIPAA Employee Acknowledgement
Download a HIPAA employee acknowledgement template for medical clinics. Covers Privacy Rule training, Privacy Rule and Security Rule sanction policies, confidentiality obligations, and PHI handling procedures. For 45 CFR §§164.530(b), 164.530(e), and 164.308(a)(5).
Quick reference
Free HIPAA Release Form Template
Download a HIPAA-compliant authorization form for releasing patient records. Covers all required elements of 45 CFR §164.508. Editable format for medical clinics.
Quick reference
HIPAA Privacy Policy Template
Download a HIPAA Privacy Rule policy template for small medical clinics. Covers 45 CFR §164.530 administrative requirements including workforce training, sanctions, and complaint procedures.
Quick reference
HIPAA Security Policy Template
Download a HIPAA Security Rule policy template for small medical clinics. Covers administrative, physical, and technical safeguards required by 45 CFR §§164.308–164.316.
Quick reference
Notice of Privacy Practices
Download a HIPAA-compliant Notice of Privacy Practices template for small medical clinics. Covers all required elements of 45 CFR §164.520. Editable for your clinic name and state.
Quick reference
HIPAA Compliance Self-Assessment
A fast self-assessment for small clinics to score their BAA coverage, task ownership, training evidence, incident readiness, and workflow sprawl.
Assessment tool
HIPAA PM Tool Comparison Guide
A clinic-focused worksheet for comparing task management, workflow, and compliance tools on BAA posture, pricing model, auditability, and day-to-day operating fit.
Template
Free BAA Template Pack
Download a plain-English BAA template reviewed against 45 CFR §164.504(e). Editable DOCX format. Built for covered entities who need to execute agreements with business associates without an in-house legal team.
Quick reference
HIPAA Breach Notification Decision Tree
A printable, one-page decision tree that guides your team through the 45 CFR §164.402 breach determination: Was PHI involved? Was it unsecured? Does an exception apply? Who must be notified and when?
Quick reference
HIPAA New Hire Checklist
A 10-step checklist for onboarding new clinical or administrative staff to your clinic's HIPAA compliance program.
Assessment tool
HIPAA Risk Analysis Worksheet
A step-by-step risk analysis worksheet built on the NIST SP 800-66 Rev 2 methodology. Covers threat identification, vulnerability assessment, likelihood and impact scoring, and residual risk documentation. Required by 45 CFR §164.308(a)(1)(ii)(A).
Template
HIPAA Incident Response Plan Template
A fill-in-the-blank incident response plan template built around the §164.308(a)(6) Security Incident Procedures safeguard.
Assessment tool
Healthcare Vendor BAA Tracker
A ready-to-use tracker for BAA status across every vendor who touches your clinic's PHI. Know exactly who you've covered — and who you haven't.
Vendor guides
Search-driven pages for buyers asking tool-specific PHI and HIPAA questions.
RingCentral Is RingCentral HIPAA Compliant for Medical Clinics? Is RingCentral HIPAA compliant? BAA available for paying covered entities. Learn covered services and configuration steps. Typeform Is Typeform HIPAA Compliant for Small Clinics? Is Typeform HIPAA compliant? Typeform now publishes a BAA setup path for medical forms. Learn what clinics must verify first. Zapier Is Zapier HIPAA Compliant for Medical Clinics? Is Zapier HIPAA compliant? No. Zapier says it does not sign a BAA, so clinics should not route PHI through Zaps. Zapier Zapier PHI Workflow Risk for Healthcare Teams Audit Zapier PHI workflow risk: map triggers, payloads, destination apps, BAAs, and automation-chain gaps before patient data moves. Anthropic Is Anthropic HIPAA Compliant as a Healthcare Vendor? Is Anthropic HIPAA compliant? Enterprise API customers can obtain a BAA. Learn what it covers, what your organization remains responsible for, and how to. athenahealth Is athenahealth HIPAA Compliant? A Covered Entity Guide Is athenahealth HIPAA compliant? athenahealth signs BAAs and supports HIPAA requirements, but covered entities remain responsible for user provisioning and. Claude / Anthropic Is Claude HIPAA Compliant for Medical Clinics? Is Claude HIPAA compliant? Learn which Anthropic plans include a BAA, what enterprise data terms cover, and what clinics must do before using Claude with PHI. Cursor Is Cursor HIPAA Compliant for Healthcare Developers? Is Cursor HIPAA compliant? No BAA is publicly available for Cursor as of early 2026. Learn what Privacy Mode covers, the PHI risks, and what alternatives exist. DeepSeek Is DeepSeek HIPAA Compliant for Healthcare Organizations? Is DeepSeek HIPAA compliant? No BAA, Chinese data residency, and regulatory concerns make DeepSeek unsuitable for any PHI use. Learn the full analysis. Epic Systems Is Epic EHR HIPAA Compliant? What Clinics Must Know Is Epic EHR HIPAA compliant? Epic signs BAAs and is ONC-certified, but covered entities remain responsible for access controls, audit monitoring, and. GitHub Copilot Is GitHub Copilot HIPAA Compliant for Healthcare Developers? Is GitHub Copilot HIPAA compliant? Enterprise agreements with a Microsoft BAA can cover Copilot. Learn the plan requirements, PHI risks, and configuration. Kareo (Tebra) Is Kareo HIPAA Compliant for Medical Clinics? Kareo (now Tebra) offers a BAA for healthcare customers. Confirm contracting entity and module scope post-merger before storing PHI. Oracle Health / Cerner Is Oracle Health (Cerner) HIPAA Compliant? Is Oracle Health (formerly Cerner) HIPAA compliant? BAAs are available, but covered entities must verify agreements were updated post-merger and review. Perplexity AI Is Perplexity AI HIPAA Compliant for Healthcare? Is Perplexity AI HIPAA compliant? No BAA is available for Perplexity Pro or consumer plans. Learn why AI search tools are PHI risks and what to do instead. Practice Fusion Is Practice Fusion HIPAA Compliant? What Small Clinics Must Know Is Practice Fusion HIPAA compliant? Practice Fusion signs BAAs and is ONC-certified. Learn covered entity obligations and key due diligence context for. TherapyNotes Is TherapyNotes HIPAA Compliant for Medical Clinics? TherapyNotes is HIPAA-appropriate with its included BAA. Configure user roles, use the portal, and avoid mixing in non-BAA communication tools. WebPT Is WebPT HIPAA Compliant for Medical Clinics? Is WebPT HIPAA compliant? Yes — BAA details published on the pricing page for customers, with HIPAA-aware EHR workflows for therapy practices. Amazon Web Services (AWS) Is AWS HIPAA Compliant for Healthcare Workloads? Is AWS HIPAA compliant? AWS offers a BAA covering 150+ HIPAA-eligible services. Learn how to sign the AWS BAA and which services are covered before building... Microsoft Azure Is Microsoft Azure HIPAA Compliant? Is Microsoft Azure HIPAA compliant? Learn about Azure's BAA, covered services, required configuration, and what clinics must do before building PHI... BambooHR Is BambooHR HIPAA Compliant for Medical Clinics? Is BambooHR HIPAA compliant? BambooHR has no HIPAA BAA. But HIPAA governs patient PHI, not employee records. Learn when clinic HR data actually triggers... Canva Is Canva HIPAA Compliant for Medical Clinics? Is Canva HIPAA compliant? Canva offers no HIPAA BAA. Clinics can use Canva for general marketing design, but must never upload patient photos or documents... Constant Contact Is Constant Contact HIPAA Compliant for Healthcare Email? Is Constant Contact HIPAA compliant? Constant Contact does not offer a HIPAA BAA. Learn what clinics can and cannot do with Constant Contact for healthcare... Confluence (Atlassian) Is Confluence HIPAA Compliant? Is Confluence HIPAA compliant? Atlassian's BAA is only available on Cloud Enterprise. Learn what plans qualify, what's at risk, and what clinics must do. Doxy.me Is Doxy.me HIPAA Compliant? Is Doxy.me HIPAA compliant? Free tier has no BAA. Paid plans include a BAA, but clinics must sign it. Learn what your clinic must do before using Doxy.me... Formstack Is Formstack HIPAA Compliant for Patient Data Collection? Is Formstack HIPAA compliant? Yes — on the Workspace plan with a signed BAA. Learn how clinics can use Formstack for patient intake and consent forms legally. Google Cloud Is Google Cloud HIPAA Compliant for Healthcare Workloads? Is Google Cloud HIPAA compliant? Learn about the Google Cloud BAA, covered services, Healthcare API, and what clinics must configure before using Google... Grammarly Is Grammarly HIPAA Compliant for Clinical Documentation? Is Grammarly HIPAA compliant? Grammarly does not offer a HIPAA BAA. Clinical notes, patient letters, and any PHI must not be pasted into Grammarly. Learn... Linear Is Linear HIPAA Compliant for Healthcare Teams? Is Linear HIPAA compliant? Linear does not offer a HIPAA BAA. Learn what this means for clinical operations teams and hybrid tech-clinical workflows with... Mailchimp Is Mailchimp HIPAA Compliant for Healthcare Email Marketing? Is Mailchimp HIPAA compliant? Mailchimp has no HIPAA BAA. Healthcare email marketing is permitted if zero PHI enters Mailchimp. Learn the rules for safe... Microsoft 365 Is Microsoft 365 HIPAA Compliant? Is Microsoft 365 HIPAA compliant? It can be, but not out of the box. Learn how to execute the M365 BAA and which compliance features clinics must configure... Miro Is Miro HIPAA Compliant for Healthcare Teams? Is Miro HIPAA compliant? Miro offers a BAA only for Enterprise customers. Free, Starter, and Business plans have no HIPAA coverage. Learn what healthcare... OpenAI (API) Is the OpenAI API HIPAA Compliant? Is OpenAI API HIPAA compliant? Standard API accounts lack a BAA; enterprise customers need the Healthcare Addendum before PHI use. Pipedrive Is Pipedrive HIPAA Compliant for Healthcare CRM? Is Pipedrive HIPAA compliant? Pipedrive does not offer a HIPAA BAA. Clinics using Pipedrive for patient CRM create exposure if any contact record contains PHI. Microsoft Power Automate Is Microsoft Power Automate HIPAA Compliant? Is Power Automate HIPAA compliant? Microsoft covers Power Automate under its Online Services Terms BAA — but only when using HIPAA-covered connectors. Learn... SimplePractice Is SimplePractice HIPAA Compliant? Is SimplePractice HIPAA compliant? Yes — SimplePractice includes a BAA at all paid tiers. Learn what the BAA covers and what your practice still needs for a... Stripe Is Stripe HIPAA Compliant for Medical Clinics? Is Stripe HIPAA compliant? Stripe does not offer a HIPAA BAA. Learn the PCI-DSS vs HIPAA difference and how clinics can use Stripe for billing without PHI... SurveyMonkey Is SurveyMonkey HIPAA Compliant for Patient Surveys? Is SurveyMonkey HIPAA compliant? Only Enterprise plan includes a BAA. Standard, Advantage, and Premier have no HIPAA coverage. Learn what patient survey... Twilio Is Twilio HIPAA Compliant for Healthcare Messaging? Is Twilio HIPAA compliant? Twilio offers a BAA for eligible products, but not all Twilio products qualify. Learn which products are covered and how to set... Vonage Is Vonage HIPAA Compliant for Healthcare Communications? Is Vonage HIPAA compliant? Vonage Business Communications offers a BAA for healthcare customers. Learn which Vonage products qualify and when clinic phone... Wix Is Wix HIPAA Compliant for Healthcare Websites? Is Wix HIPAA compliant? Wix does not offer a HIPAA BAA. General clinic websites are fine, but any patient-facing data collection on Wix creates a PHI... Workday Is Workday HIPAA Compliant for Healthcare Organizations? Is Workday HIPAA compliant? Workday offers a BAA for healthcare customers, but most clinic Workday data is employee HR data, not patient PHI. Learn when... WordPress Is WordPress HIPAA Compliant for Healthcare Websites? Is WordPress HIPAA compliant? WordPress.com has no BAA. Self-hosted WordPress depends on your host. Learn what clinics must do before collecting patient... Box Is Box HIPAA Compliant? Is Box HIPAA compliant? Box offers a BAA on qualifying plans. Learn what plan, configuration, and controls are required before using Box with PHI. Figma Is Figma HIPAA Compliant? Is Figma HIPAA compliant? Standard Figma plans lack a BAA. Learn when Figma creates HIPAA risk and how to keep PHI out of design files entirely. Freshdesk Is Freshdesk HIPAA Compliant? Is Freshdesk HIPAA compliant? Freshworks offers a BAA on Enterprise plans. Learn when Freshdesk creates PHI risk and what configuration is required. GitHub Is GitHub HIPAA Compliant? Is GitHub HIPAA compliant? Microsoft's Enterprise BAA covers GitHub Enterprise. Learn when PHI enters repositories and how to prevent it. Intercom Is Intercom HIPAA Compliant? Is Intercom HIPAA compliant? Intercom offers a BAA on qualifying plans. Learn when patient chat creates PHI risk and what configuration is required. Loom Is Loom HIPAA Compliant? Is Loom HIPAA compliant? Loom's standard plans lack a BAA. Learn when Loom creates HIPAA risk and how to use it safely without PHI. Power BI Is Power BI HIPAA Compliant? Is Power BI HIPAA compliant? Microsoft covers Power BI in its HIPAA BAA. Learn what configuration is required before connecting PHI datasets. QuickBooks Is QuickBooks HIPAA Compliant? Is QuickBooks HIPAA compliant? Intuit does not broadly offer a HIPAA BAA for QuickBooks. Learn when clinic accounting data constitutes PHI and how to manage it. ServiceNow Is ServiceNow HIPAA Compliant? Is ServiceNow HIPAA compliant? ServiceNow offers HIPAA BAAs for healthcare customers. Learn when IT tickets contain PHI and what configuration is required. Tableau Is Tableau HIPAA Compliant? Is Tableau HIPAA compliant? Salesforce covers Tableau in its HIPAA BAA for qualifying plans. Learn the deployment differences, RLS requirements, and PHI risks. Webex Is Webex HIPAA Compliant? Is Webex HIPAA compliant? Cisco offers a HIPAA BAA for Webex. Learn plan requirements, telehealth configuration, and PHI risks in video and messaging. Zendesk Is Zendesk HIPAA Compliant? Is Zendesk HIPAA compliant? Zendesk offers a BAA for qualifying customers. Learn the plan requirements, AI considerations, and configuration needed for PHI. Adobe Acrobat Sign Is Adobe Acrobat Sign HIPAA Compliant for Medical Clinics? Is Adobe Acrobat Sign HIPAA compliant? BAA available on enterprise plans. Learn the tier, configuration steps, and what small clinics must verify. ChatGPT / OpenAI Is ChatGPT HIPAA Compliant for Medical Clinics? Is ChatGPT HIPAA compliant? Learn about OpenAI's enterprise BAA, consumer tier risks, training data policies, and what clinics must do before using AI with PHI. Microsoft Copilot Is Microsoft Copilot HIPAA Compliant for Medical Clinics? Is Microsoft Copilot HIPAA compliant? M365 Copilot on qualifying enterprise plans can qualify. Consumer Copilot does not. What clinics must verify. DocuSign Is DocuSign HIPAA Compliant for Medical Clinics? Is DocuSign HIPAA compliant? Learn which DocuSign plans offer a BAA, what admin controls are required, and where clinics face PHI exposure with e-signatures. Doximity Is Doximity HIPAA Compliant for Medical Clinics? Is Doximity HIPAA compliant? Yes — Doximity offers a BAA and is purpose-built for healthcare. Learn what clinics still need to configure and govern. Dropbox Is Dropbox HIPAA Compliant for Medical Clinics? Is Dropbox HIPAA compliant? Learn which plans offer a BAA, what admin controls are required, and the shared-link risk that catches clinics off guard. FaceTime / Apple Is FaceTime HIPAA Compliant for Medical Clinics? Is FaceTime HIPAA compliant? Apple does not sign BAAs for FaceTime. Learn the compliance gap and what clinics need for HIPAA-safe video calls. Google Gemini Is Google Gemini HIPAA Compliant for Medical Clinics? Is Google Gemini HIPAA compliant? Enterprise Workspace BAA covers Gemini in specific tiers. Consumer Gemini is not. Learn what clinics need to know. Gmail / Google Workspace Is Gmail HIPAA Compliant for Medical Clinics? Is Gmail HIPAA compliant? Learn which Google Workspace plans include a BAA, what admin steps are required, and what risks remain for small clinics. Google Meet Is Google Meet HIPAA Compliant for Medical Clinics? Is Google Meet HIPAA compliant? Learn about BAA coverage, required admin settings, and what clinics must configure before using Meet for patient care. Google Voice Is Google Voice HIPAA Compliant for Medical Clinics? Is Google Voice HIPAA compliant? Learn which plan offers BAA coverage, what limitations apply, and why clinics should evaluate alternatives for patient calls. Google Workspace Is Google Workspace HIPAA Compliant for Medical Clinics? Is Google Workspace HIPAA compliant? Guide to Google's BAA, covered services, admin setup steps, and what clinics must verify before placing PHI there. HubSpot Is HubSpot HIPAA Compliant for Medical Clinics? Is HubSpot HIPAA compliant? BAA available on Enterprise with add-on. Learn which HubSpot plans support PHI and what configuration is required. Otter.ai Is Otter.ai HIPAA Compliant for Medical Clinics? Is Otter.ai HIPAA compliant? BAA available on Business and Enterprise plans with opt-out of AI training. Learn what clinics need before using Otter.ai. Outlook / Microsoft 365 Is Outlook HIPAA Compliant for Medical Clinics? Is Outlook HIPAA compliant? Learn which Microsoft 365 plans include a BAA, what admin steps are required, and what risks remain for clinical email use. Salesforce Is Salesforce HIPAA Compliant for Medical Clinics? Is Salesforce HIPAA compliant? Learn which editions offer a BAA, what admin steps are required, and how Health Cloud differs from standard Salesforce CRM. Microsoft Teams Is Microsoft Teams HIPAA Compliant for Medical Clinics? Is Microsoft Teams HIPAA compliant? Learn about Teams' BAA coverage, admin setup requirements, guest access risks, and the Teams for Healthcare tier. WhatsApp / Meta Is WhatsApp HIPAA Compliant for Medical Clinics? Is WhatsApp HIPAA compliant? No. Meta does not offer a BAA for WhatsApp. Learn why clinics must avoid PHI on WhatsApp and what to use instead. Zoom Is Zoom HIPAA Compliant for Small Clinics? Is Zoom HIPAA compliant? Guide for clinics on Zoom for Healthcare, BAA scope, recording storage, and chat/PMI risks. Google Drive Can Healthcare Teams Use Google Drive for PHI? Can healthcare teams use Google Drive for PHI? Guide to Google Workspace BAA requirements, included functionality, and sharing controls. Airtable Is Airtable HIPAA Compliant for Healthcare Workflows? Is Airtable HIPAA compliant? Guide for clinics on Enterprise Scale gating, BAA requirements, integrations, and AI settings. Asana Is Asana HIPAA Compliant for Small Clinics? Is Asana HIPAA compliant? Guide for small clinics on Asana's BAA posture, enterprise gating, and where compliance risk remains. Google Sheets Can Healthcare Teams Use Google Sheets for PHI? Can healthcare teams use Google Sheets for PHI? Guide to Google Workspace BAA requirements, included functionality, and spreadsheet workflow limits. Basecamp Is Basecamp HIPAA Compliant for Clinic Work? Is Basecamp HIPAA compliant? Guide for clinics on public documentation gaps, security materials, and why PHI workflows need caution. Calendly Is Calendly HIPAA Compliant for Patient Scheduling? Is Calendly HIPAA compliant? Guide for clinics on scheduling workflows, BAAs, and the patient-information risks that still remain. ClickUp Is ClickUp HIPAA Compliant for Clinical Work? Is ClickUp HIPAA compliant? Guide for clinics on enterprise gating, BAAs, and where ClickUp still leaves operational compliance work on the clinic. Jira Is Jira HIPAA Compliant for Clinic Operations? Is Jira HIPAA compliant? Guide for clinics on Atlassian plan eligibility, BAA coverage, implementation requirements, and workflow risk. Microsoft Planner Is Microsoft Planner HIPAA Compliant for Clinic Tasks? Is Microsoft Planner HIPAA compliant? Guide for clinics on Microsoft 365 BAA coverage, Planner visibility limits, and guest-access risk. monday.com Is monday.com HIPAA Compliant for Small Clinics? Is monday.com HIPAA compliant? Guide for small clinics on Enterprise gating, BAA activation, notifications, and workflow risk. Notion Is Notion HIPAA Compliant for Clinic Documentation? Is Notion HIPAA compliant? Guide for clinics on Enterprise gating, BAA requirements, product limitations, and configuration controls. Smartsheet Is Smartsheet HIPAA Compliant for Clinical Work? Is Smartsheet HIPAA compliant? Guide for clinics on Enterprise eligibility, PHI Eligible Services, shared responsibility, and add-on caveats. Trello Is Trello HIPAA Compliant for Clinic Workflows? Is Trello HIPAA compliant? Guide for clinics on Atlassian's HIPAA docs, Trello-specific gaps, and why PHI workflows need caution. Jotform Can Healthcare Teams Use Jotform for PHI? Can healthcare teams use Jotform for PHI? Guide to Jotform's HIPAA program, BAA path, and workflow limits. Microsoft Teams Can Healthcare Teams Use Microsoft Teams for PHI? Can healthcare teams use Microsoft Teams for PHI? Guide to Microsoft's BAA terms, in-scope services, and workflow caveats. OneDrive Can Healthcare Teams Use OneDrive for PHI? Can healthcare teams use OneDrive for PHI? Guide to Microsoft's BAA terms, in-scope services, and personal file-sharing risks. SharePoint Can Healthcare Teams Use SharePoint for PHI? Can healthcare teams use SharePoint for PHI? Guide to Microsoft's BAA terms, in-scope services, and document governance requirements. Slack Can Healthcare Teams Use Slack for PHI? Can healthcare teams use Slack for PHI? Guide to Enterprise Grid, BAA requirements, and Slack HIPAA limitations.
Learning center
Educational hubs and recent explainers across PHI, workflows, and HIPAA operations.
Hub Compliance Operations Hub Compliance operations hub for small clinics covering audit logs, access controls, policy acknowledgements, evidence, and vendor tracking. Hub HIPAA Basics for Small Clinics HIPAA basics for small clinics: PHI, covered entities, business associates, and the minimum necessary rule explained in plain language. Hub HIPAA Incident Response Hub HIPAA incident response hub for small clinics. Learn breach triage, risk assessment, documentation, and notification timelines. Hub HIPAA Risk Analysis Hub HIPAA risk analysis hub for small clinics. Learn how to scope, perform, document, and update your annual risk analysis. Hub PHI Fundamentals PHI fundamentals hub covering what PHI and ePHI are, the 18 HIPAA identifiers, PHI vs PII, limited data sets, and common edge cases. Hub PHI Tools and Vendors PHI tools and vendors hub for evaluating BAAs, plan gating, covered services, sharing controls, and vendor limitations before storing PHI. Hub PHI Workflows PHI workflows hub covering PHI in email, text messaging, voicemail, fax, spreadsheets, AI tools, intake forms, and task comments. Hub Vendor Management and BAAs Hub Vendor management and BAA hub for small clinics. Learn which vendors need BAAs, what to review, and what compliant pricing really looks like. Hub Workforce Training and Access Hub HIPAA workforce training hub for small clinics covering onboarding, access reviews, offboarding, and training records.
Compliance ops 42 CFR Part 2 Updated Rules: What Clinics Treating Substance Use Disorders Must Know 42 CFR Part 2's 2024 amendments change SUD record consent, add breach notification, and partially align with HIPAA. What clinics treating SUD patients must do. Compliance ops Connecticut CTDPA and HIPAA: What Connecticut Clinics Must Know Connecticut CTDPA vs. HIPAA: private right of action, sensitive health data consent, HIV confidentiality, and what Connecticut clinics must do beyond their. Compliance ops Colorado Privacy Act and HIPAA: What Colorado Clinics Must Know Colorado Privacy Act vs. HIPAA: when Colorado clinics face CPA obligations, data subject rights, and what the CPA's health data provisions mean for small. Compliance ops Florida Health Information Laws and HIPAA: Clinic Compliance Guide Florida health privacy laws vs. HIPAA: 30-day breach notification, HIV confidentiality, Baker Act mental health records, and what Florida clinics must do. Compliance ops HIPAA Administrative Safeguards Checklist for Small Clinics HIPAA administrative safeguards checklist. 45 CFR 164.308 walkthrough covering risk analysis, training, incident response, and contingency plans. Compliance ops HIPAA Compliance for Arizona Clinics: Federal and State Requirements Arizona clinics must meet HIPAA plus A.R.S. § 18-552 (45-day breach notice), § 12-2291 patient access, and HIV/AIDS confidentiality rules. Compliance ops HIPAA Compliance for Arkansas Medical Clinics HIPAA compliance for Arkansas clinics: 45-day breach notification under §4-110-101, medical records privilege, hospital records retention, and AG enforcement. Compliance ops HIPAA Compliance for California Medical Clinics HIPAA compliance for California clinics: §1280.15 medical breach notification, CMIA private right of action, mental health protections, and 5 action items.
Commercial paths
Pages for active software evaluation.
Intake forms Best HIPAA-Compliant Intake Form Software Best HIPAA-compliant intake form software. Compare Jotform, Formstack, HIPAAtizer, Typeform, and Google Forms under a BAA. Forms and intake Best HIPAA-Compliant Forms for Small Medical Practices Best HIPAA-compliant forms for small practices. Learn how to evaluate BAA posture, fields, notifications, retention, and handoffs. HIPAA Compliance Software for Mental Health Best HIPAA Compliance Software for Mental Health Practices (2026) Best HIPAA compliance software for mental health groups: psychotherapy notes, 42 CFR Part 2, training, BAAs, and policy management. HIPAA Compliant AI Tools Best HIPAA-Compliant AI Tools for Small Medical Clinics (2026) Best HIPAA-compliant AI tools for clinics in 2026. Compare AI scribes, admin tools, and billing AI with BAA coverage — and which to prohibit for PHI. Patient communications Best HIPAA-Compliant Appointment Reminder Software Compare HIPAA-compliant appointment reminder software. Honest rankings on BAA terms, pricing, and compliance fit for small medical clinics. Dental practice software Best HIPAA-Compliant Dental Practice Software Compare the best HIPAA-compliant dental practice software. Honest rankings on BAA, compliance fit, and published pricing for dental clinics. HIPAA Compliant EHR Systems Best HIPAA-Compliant EHR Systems for Small Clinics (2026) Best HIPAA-compliant EHR systems for small clinics in 2026. Compare Epic, athenahealth, Practice Fusion, eClinicalWorks, Kareo, DrChrono, SimplePractice. Mental health practice software Best HIPAA-Compliant Mental Health Practice Software Compare the best HIPAA-compliant mental health practice software. Honest rankings on BAA terms, compliance fit, and pricing for therapy clinics. Practice management Best HIPAA-Compliant Practice Management Software for Small Clinics Compare the best HIPAA-compliant practice management software for small clinics. Honest rankings on compliance fit, BAA, and published pricing. Revenue cycle management Best HIPAA-Compliant Revenue Cycle Management Software Compare HIPAA-compliant revenue cycle management software. Honest rankings on BAA terms, pricing, and compliance fit for small clinics. HIPAA Compliant Notion Alternatives HIPAA-Compliant Alternatives to Notion for Healthcare Teams HIPAA-compliant alternatives to Notion for healthcare teams. Compare SharePoint, Confluence, PHIGuard, and Google Workspace for HIPAA-safe documentation. HIPAA Compliant ChatGPT Alternatives HIPAA-Compliant Alternatives to ChatGPT for Healthcare HIPAA-compliant alternatives to ChatGPT for healthcare in 2026. Compare Azure OpenAI, AWS Bedrock, Claude Enterprise API, and healthcare AI scribes. HIPAA Compliant Analytics Tools Best HIPAA Compliant Analytics Tools for Healthcare Websites Best HIPAA compliant analytics tools for healthcare. GA4 explained, privacy-first alternatives compared, and BAA availability reviewed. HIPAA Compliant Medical Billing Software Best HIPAA Compliant Medical Billing Software for Small Clinics Best HIPAA compliant medical billing software for small clinics. BAA inclusion, pricing, and workflow fit compared across top platforms. HIPAA Compliant Dictation Software Best HIPAA Compliant Dictation Software for Clinical Documentation Best HIPAA compliant dictation software for clinical documentation. Cloud vs local processing, BAA requirements, and pricing compared. HIPAA Compliant Online Fax Services Best HIPAA Compliant Online Fax Services for Medical Clinics Best HIPAA compliant online fax services for medical clinics. BAA inclusion, pricing, and healthcare fax features compared. HIPAA Compliant Patient Portals Best HIPAA Compliant Patient Portals for Small Clinics Best HIPAA compliant patient portals for small clinics. Compare BAA inclusion, pricing, and ease of adoption across top options. HIPAA Compliant Payment Processing Best HIPAA Compliant Payment Processing for Medical Clinics HIPAA compliant payment processing for medical clinics. PCI-DSS vs HIPAA explained. Which processors offer BAAs and which do not. HIPAA Compliant Phone Systems Best HIPAA Compliant Phone Systems for Medical Clinics Compare the best HIPAA compliant phone systems for medical clinics. BAA availability, pricing, and healthcare VoIP features reviewed. HIPAA Compliant Remote Access Software Best HIPAA Compliant Remote Access Software for Clinics Best HIPAA compliant remote access software for clinics. BAA availability, access logging, and healthcare VPN and remote desktop options compared. HIPAA Compliant Telehealth Platforms Best HIPAA Compliant Telehealth Platforms for Clinics Best HIPAA compliant telehealth platforms for clinics. Compare BAA coverage, free-tier limitations, and pricing across top options. HIPAA Compliant Survey Tools Best HIPAA Compliant Survey Tools for Healthcare Best HIPAA compliant survey tools for healthcare. BAA availability, pricing tiers, and patient experience survey fit compared. baa-tracking Best BAA Tracker Software Compare BAA tracker software for small medical practices. Learn what effective BAA management requires and which tools handle vendor inventory and renewals. data-management Best HIPAA Data Management Tools Compare HIPAA-compliant data management tools for small clinics. Learn what a BAA covers for cloud storage, documents, and compliance records. hr-software Best HIPAA-Compliant HR Software Compare HIPAA-eligible HR software for small clinics. Learn what a BAA covers, which platforms offer one, and how to close the compliance gap. remote-work Best HIPAA Remote Work Software Best HIPAA-compliant remote work software for clinics: what to evaluate across messaging, video, storage, compliance management, and endpoint security. Compliance software for digital health startups Best HIPAA Compliance Software for Healthcare Startups Best HIPAA compliance software for healthcare startups. Compare BAA availability, setup time, and pricing for early-stage health companies. Compliance software for mental health practices Best HIPAA Compliance Software for Therapists Best HIPAA compliance software for therapists. Compare BAA availability, documentation tools, and pricing for mental health practices of all sizes. Cloud storage and file sharing Best HIPAA-Compliant Cloud Storage for Medical Clinics Best HIPAA-compliant cloud storage for clinics: compare BAA availability, access controls, audit logging, and pricing for medical practices. CRM and patient relationship management Best HIPAA Compliant CRM for Healthcare Best HIPAA compliant CRM for healthcare. Compare BAA availability, healthcare fit, and pricing for small medical practices. Document sharing Best HIPAA-Compliant Document Sharing Tools Best HIPAA-compliant document sharing tools for healthcare teams comparing file access, sharing controls, and retention. E-signature Best HIPAA-Compliant E-Signature Software for Clinics Best HIPAA-compliant e-signature software. Compare Adobe Acrobat Sign, SignNow, and SIGNiX on BAA coverage and audit trail. Electronic health records Best HIPAA-Compliant EHR for Small Practices (2026) Best HIPAA-compliant EHR for small practices: compare BAA coverage, access controls, audit logging, and pricing for clinics with 1–10 providers. Password managers Best HIPAA-Compliant Password Managers for Clinics Best HIPAA-compliant password managers. Compare 1Password, Bitwarden, Keeper, and LastPass on BAA availability, SSO, audit log, and pricing model. Note-taking and documentation apps Best HIPAA Compliant Note-Taking Apps Best HIPAA compliant note-taking apps for healthcare. Compare BAA availability, encryption, and access controls for clinical and administrative notes. Appointment scheduling software Best HIPAA Compliant Appointment Scheduling Software Best HIPAA compliant appointment scheduling software for clinics. Compare BAA availability, pricing models, and fit for small medical practices. Screen recording and video capture Best HIPAA Compliant Screen Recording Software Best HIPAA compliant screen recording software for healthcare. Compare BAA availability and data handling for clinical training and workflow documentation. Secure messaging Best HIPAA-Compliant Secure Messaging for Clinics Best HIPAA-compliant secure messaging. Compare TigerConnect, OnPage, Halo, Spruce, and Klara on BAA, clinician vs patient messaging, and audit. Help desk and IT ticketing software Best HIPAA Compliant Ticketing Systems for Clinics Best HIPAA compliant ticketing systems for healthcare clinics. Compare BAA availability, access controls, and pricing for medical IT and admin support. Medical transcription and AI transcription Best HIPAA Compliant Transcription Services Best HIPAA compliant transcription services for medical clinics. Compare BAA availability, accuracy, and pricing for clinical documentation needs. Video conferencing Best HIPAA-Compliant Video Conferencing for Clinics Best HIPAA-compliant video conferencing. Compare Zoom Healthcare, Doxy.me, Microsoft Teams, Google Meet, and Updox on BAA, recording, and storage. Virtual assistants and medical administrative support Best HIPAA Compliant Virtual Assistants for Medical Practices Best HIPAA compliant virtual assistants for medical practices. Compare BAA availability, service scope, and pricing for small clinic administrative support. HIPAA workforce training Best HIPAA Compliance Training Platforms Best HIPAA training platforms for healthcare staff. Compare BAA availability, training content, completion tracking, and pricing for small clinics. Audit logs and audit-ready compliance operations Best HIPAA Audit Log Software for Audit-Ready Clinics Best HIPAA audit log software for clinics. Compare audit trails, accountability, and workflow fit. Collaboration Best HIPAA-Compliant Collaboration Tools Best HIPAA-compliant collaboration tools for healthcare teams comparing messaging, file-sharing, and internal coordination. Incident response and breach handling Best HIPAA Incident Response Software for Clinics Best HIPAA incident response software for clinics. Compare investigation workflow, documentation, routing, and pricing models. Policy management and attestations Best HIPAA Policy Management Software for Clinics Best HIPAA policy management software for clinics. Compare acknowledgements, version control, and workflow fit. Risk analysis and remediation planning Best HIPAA Risk Assessment Software for Small Clinics Best HIPAA risk assessment software for small clinics. Compare remediation workflow, documentation, and pricing models. Workforce training and attestation Best HIPAA Training Software for Clinic Staff Best HIPAA training software for clinic staff. Compare completion tracking, onboarding fit, and pricing models. Vendor oversight and BAA tracking Best HIPAA Vendor Management Software for Clinics Best HIPAA vendor management software for clinics. Compare BAA tracking, review workflow, and pricing models. PHI management Best PHI Management Software Best PHI management software for healthcare teams comparing workflow control, auditability, collaboration, and document handling. PHI handling Best Software for Handling PHI Best software for handling PHI across documents, forms, collaboration, and recurring healthcare operations. Budget-conscious shortlist Best Affordable HIPAA Tools for Small Clinics Best affordable HIPAA tools for small clinics. Compare published pricing, enterprise gating, and the hidden cost of generic software. Task and workflow software Best HIPAA Project Management Tools for Clinics Best HIPAA project management tools for clinics. Compare BAA posture, auditability, workflow fit, and pricing models. Ambulatory Surgery Center Chains and Management Companies HIPAA Software for Ambulatory Surgery Center Chains HIPAA software for ambulatory surgery center chains. Track compliance across multiple locations, manage shared-vendor BAAs, and maintain per-site training... Allergy and Immunology Clinics HIPAA Software for Allergy and Immunology Clinics HIPAA software for allergy and immunology clinics. Manage immunotherapy audit trails, BAA inventory, access controls, and recurring compliance obligations. Correctional Health Services HIPAA Software for Correctional Health Services HIPAA software for correctional health services. Manage permissible disclosures to correctional staff, policy documentation, and compliance training. Dialysis Centers HIPAA Software for Dialysis Centers HIPAA software for dialysis centers. Manage recurring PHI audit trails, lab vendor BAAs, multi-provider coordination, and access audits for stable patient... Fertility Clinics and Reproductive Endocrinology Practices HIPAA Software for Fertility Clinics HIPAA software for fertility clinics. Manage donor records, embryo storage compliance, state law overlays, and multi-party authorization requirements. Hospice and Palliative Care Organizations HIPAA Software for Hospice and Palliative Care Organizations HIPAA software for hospice and palliative care. Manage advance directive handling, family disclosure documentation, and multi-disciplinary team compliance. Infusion Centers HIPAA Software for Infusion Centers HIPAA software for infusion centers. Manage BAAs for specialty pharmacies, prior auth coordination, payer connections, and small-team compliance obligations. Occupational Health Providers HIPAA Software for Occupational Health Providers HIPAA software for occupational health providers. Manage employer reporting boundaries, HIPAA and ADA dual compliance, and PHI disclosure documentation. Retail Health Clinics HIPAA Software for Retail Health Clinics HIPAA software for retail health clinics. Manage high-turnover HIPAA onboarding, POS and EHR vendor BAAs, and retail-clinical staff training separation. School-Based Health Centers HIPAA Software for School-Based Health Centers HIPAA software for school-based health centers. Manage HIPAA and FERPA dual compliance, minor patient authorization, and staff training obligations. Skilled Nursing Facilities HIPAA Software for Skilled Nursing Facilities HIPAA software for skilled nursing facilities. Manage continuous staff HIPAA onboarding, family disclosure rules, CMS compliance, and multi-disciplinary... Imaging center administrators and compliance managers at independent radiology and diagnostic imaging facilities HIPAA Software for Imaging Centers HIPAA software for imaging centers. DICOM PHI controls, cloud PACS BAA management, remote radiologist access reviews, and patient record request handling. Healthcare staffing operations managers and compliance coordinators HIPAA Software for Medical Staffing Agencies HIPAA software for medical staffing agencies. BAA obligations, credential documentation, workforce training, and incident response for placed clinical staff. Lab directors, compliance officers, and operations managers at independent labs and pathology centers HIPAA Software for Labs and Pathology Centers HIPAA software for labs and pathology centers. Audit logging, BAA management, mis-delivery response, and minimum-necessary training for lab technicians. Urgent care chain operators, regional compliance managers, and multi-site practice administrators HIPAA Software for Urgent Care Chains HIPAA software for urgent care chains. Multi-location training, shared vendor BAA management, incident reporting across sites, and chain-wide audit readiness. behavioral health practices HIPAA Software for Behavioral Health Practices HIPAA software for behavioral health practices. Heightened PHI sensitivity, audit trail requirements, and published pricing that fits small practice budgets. concierge medicine practices HIPAA Software for Concierge Medicine Practices HIPAA software for concierge medicine. Membership model does not reduce HIPAA obligations. BAA requirements, audit trails, published pricing. clinical research organizations HIPAA Software for Research Orgs HIPAA software for clinical research organizations. Business associate status, BAA flow-down, audit trail obligations, and published pricing. dental service organizations / DSOs HIPAA Software for Dental Service Organizations HIPAA software for dental service organizations and DSOs. Multi-site compliance management, BAA oversight, audit trails, and published pricing. digital health startups HIPAA Software for Digital Health Startups HIPAA software for digital health startups. BAA flow-down, audit trail requirements, and published pricing that scales without per-seat surprises. Group Practices HIPAA Software for Group Practices HIPAA software for group practices. Compare BAA coverage, role-based access, audit trails, and published pricing for multi-provider clinics. Home Health Agencies HIPAA Software for Home Health Agencies HIPAA software for home health agencies. Mobile device controls, visiting-nurse BAAs, OASIS handoffs, and field incident logging. medical billing companies HIPAA Software for Medical Billing Companies HIPAA software for medical billing companies. Business associate obligations, BAA flow-down, audit trail requirements, and published pricing. medical transcription companies HIPAA Software for Transcription Firms HIPAA software for medical transcription companies. Business associate obligations, BAA flow-down, Security Rule requirements, and published pricing. Multi-Location Clinics HIPAA Software for Multi-Location Clinics HIPAA software for multi-location clinics. One compliance program across sites, location-scoped roles, and consolidated audit trails. private-equity-backed clinics HIPAA Software for Private Equity-Backed Clinics HIPAA software for private equity-backed clinics. Multi-site compliance, due diligence readiness, BAA management, and published pricing at scale. revenue cycle management companies HIPAA Software for Revenue Cycle Management Companies HIPAA software for revenue cycle management companies. Business associate obligations, BAA flow-down, audit trail requirements, and published pricing. solo practitioners HIPAA Software for Solo Practitioners HIPAA software for solo practitioners. Same obligations as large practices, without the staff to manage them. Published pricing, published BAA details. Telehealth Providers HIPAA Software for Telehealth Providers HIPAA software for telehealth providers. Device and BAA inventory, transmission security, recording policy, multi-state licensure tracking. Dental practices HIPAA Software for Dental Practices HIPAA software for dental practices. Compare workflow fit, task ownership, pricing, and auditability for smaller dental teams. Medical offices HIPAA Software for Small Medical Offices HIPAA software for small medical offices. What practice administrators should prioritize in pricing, BAAs, auditability, and workflow fit. Mental health practices HIPAA Software for Mental Health Practices HIPAA software for mental health practices. What smaller therapy groups should prioritize in workflow safety, pricing, and auditability. Alternative BambooHR alternative BambooHR is for employee HR. PHIGuard is for clinical compliance operations. These are different jobs. PHIGuard publishes BAA details on the pricing page. Alternative Freshdesk alternative Freshdesk HIPAA coverage requires Enterprise plan. PHIGuard publishes BAA and plan details on the pricing page. Built for covered entities. Alternative Harvest alternative Harvest offers no HIPAA BAA. Time entries referencing patient information create compliance gaps. PHIGuard provides PHI-safe task tracking at per-clinic... Alternative Intercom alternative Intercom HIPAA coverage requires the Business plan. PHIGuard handles internal clinical compliance operations at published pricing with published BAA details. Alternative HubSpot alternative HubSpot HIPAA coverage requires the Enterprise Sensitive Health Data Add-On. PHIGuard publishes BAA and plan details on the pricing page. Alternative Linear alternative Linear has no BAA. PHIGuard publishes BAA and plan details on the pricing page. Built for covered entities. Alternative Pipedrive alternative Pipedrive offers no HIPAA BAA. PHIGuard publishes BAA and plan details on the pricing page. The right tool for covered entities. Alternative Salesforce Health Cloud alternative Salesforce Health Cloud is built for enterprise health systems. PHIGuard is right-sized for small clinics with published pricing and published BAA details. Alternative Zendesk alternative Zendesk HIPAA compliance requires an add-on, not available on standard plans. PHIGuard publishes BAA and plan details on the pricing page. Alternative Zoho Projects / Zoho One alternative Zoho's HIPAA coverage varies by product and plan. PHIGuard is a focused compliance operations platform for small clinics with published BAA details. Alternative Microsoft Excel alternative Excel is the default HIPAA tracking tool for small clinics — and one of the riskiest. PHIGuard replaces spreadsheets with auditable compliance work. Alternative Google Drive alternative Google Drive can store PHI with a Workspace BAA, but clinics still need audit trails, incident logs, and compliance task evidence. Alternative Microsoft Teams alternative Is Microsoft Teams HIPAA compliant? What the BAA covers, where Teams creates risk in clinical settings, and why dedicated compliance systems fill the gap. Alternative SharePoint alternative SharePoint stores documents — it does not run a compliance program. PHIGuard replaces the folder pattern with task management that has a BAA and audit trail. Alternative Confluence alternative Atlassian's HIPAA BAA is gated to Cloud Premium and Enterprise. PHIGuard gives small clinics a BAA with current pricing details published on the pricing page. Alternative Fellow alternative Fellow has no HIPAA BAA. If your clinic's meeting notes touch PHI, you need PHIGuard — HIPAA-native task management with published BAA details. Alternative Height alternative Height has no HIPAA BAA for healthcare. PHIGuard gives clinics HIPAA-native task management with a BAA details published on the pricing page at every plan. Alternative Hive alternative Hive is not built for HIPAA. PHIGuard gives small medical clinics a BAA, audit trail, and compliance program at pricing details published on the pricing page. Alternative MeisterTask alternative MeisterTask has no HIPAA BAA and charges per user. PHIGuard gives clinics published BAA details and published pricing with current published pricing. Alternative Motion alternative Motion has no BAA for small clinics. PHIGuard gives medical practices HIPAA-native task management with BAA details published on the pricing page. Alternative Nifty alternative Nifty has no HIPAA BAA for clinics. PHIGuard delivers HIPAA-native task management with a published BAA details at every plan, with current published pricing. Alternative Notion alternative Notion has no HIPAA BAA. Clinics using Notion for PHI-adjacent tasks need PHIGuard, with BAA details published on the pricing page. Alternative Process Street alternative Process Street handles SOPs but lacks a clinic compliance program. PHIGuard publishes BAA and plan details on the pricing page. Alternative ProofHub alternative ProofHub has flat pricing but no HIPAA BAA. PHIGuard combines clinic-flat pricing with a BAA and built-in compliance features with current published pricing. Alternative Pipefy alternative Pipefy is a general BPMN workflow tool. PHIGuard is a HIPAA-native clinic platform with published BAA details and published pricing. Alternative Slack alternative Slack's BAA requires Enterprise Grid, which is out of reach for most small clinics. PHIGuard publishes BAA details on the pricing page with current. Alternative Taskade alternative Taskade offers no BAA path for small clinics. PHIGuard publishes BAA details on the pricing page and is built specifically for covered entities. Alternative Teamwork alternative Teamwork targets agencies, not clinics. PHIGuard gives small medical practices a BAA, HIPAA audit trail, and pricing details published on the pricing page. Alternative Adobe Workfront alternative Workfront is enterprise PM, too heavy for small clinics. PHIGuard gives clinics a BAA, HIPAA audit trail, and pricing details published on the pricing page. Alternative Airtable alternative Airtable's BAA is Enterprise-only and per-user. PHIGuard publishes BAA and plan details on the pricing page. Alternative ClickUp alternative ClickUp's BAA lives on higher-tier plans. PHIGuard publishes BAA and plan details on the pricing page. Alternative Basecamp alternative Basecamp doesn't sign BAAs and wasn't built for HIPAA. PHIGuard gives medical clinics a signed BAA, audit trail, and compliance templates per clinic. Alternative Jira alternative Atlassian gates Jira BAAs to Enterprise. PHIGuard is positioned for clinics that want compliance workflows without an enterprise-heavy rollout. Alternative Microsoft Planner alternative Microsoft Planner sits inside the Microsoft 365 BAA, but clinics still need audit trails, incident logs, and compliance task evidence. Alternative Notion alternative Notion gates its BAA to Enterprise. PHIGuard publishes BAA and plan details on the pricing page. Alternative Smartsheet alternative Smartsheet signs BAAs on higher tiers but isn't built for clinical compliance. PHIGuard publishes BAA and plan details on the pricing page. Alternative Todoist alternative Todoist doesn't sign BAAs and isn't HIPAA-compliant. PHIGuard gives medical clinics a signed BAA, audit trail, and compliance templates per clinic. Alternative Trello alternative Trello is not documented by Atlassian as a HIPAA-ready workflow tool. PHIGuard is positioned for clinics that need tighter compliance follow-through. Alternative Wrike alternative Wrike offers a HIPAA-eligible tier but it's priced for mid-market ops teams, not clinics. PHIGuard publishes BAA and plan details on the pricing page. Alternative Asana alternative Asana isn't built for HIPAA. PHIGuard gives medical clinics a BAA-focused workflow, audit history, and clinic-oriented packaging. Alternative Monday.com alternative Monday.com gates BAAs behind enterprise contracts. PHIGuard is positioned around clinic workflows with a BAA, audit trail, and stronger compliance guardrails. Comparison The ROI of Structured HIPAA Compliance for Small Clinics ROI of structured HIPAA compliance: breach risk, OCR investigations, complaint handling, staff hours. Formula for small clinics. Comparison PHIGuard vs Kareo (Tebra): Compliance Program vs Practice Management PHIGuard vs Kareo / Tebra: practice management vs HIPAA compliance program. Published pricing and published BAA details. Comparison PHIGuard vs Netsmart: Small-Clinic Compliance vs Enterprise Platform PHIGuard vs Netsmart: small-clinic flat pricing vs enterprise platform. BAA and plan details published on the pricing page, no enterprise contracts. Comparison PHIGuard vs TherapyNotes: Where Compliance Fits Alongside a Behavioral Health EHR PHIGuard vs TherapyNotes: published pricing, published BAA details, and how compliance operations fit beside a behavioral health EHR. Comparison Abyde vs Compliancy Group: HIPAA Compliance Software Compared Abyde vs Compliancy Group: simplified self-guided compliance vs dedicated coaching model. Compare features, pricing transparency, and fit for your practice. Comparison HIPAA Compliance Software Comparison 2026: PHIGuard, Compliancy Group, AccountableHQ, Abyde, Drata 2026 HIPAA compliance software comparison: PHIGuard, Compliancy Group, AccountableHQ, Abyde, Drata. Features, pricing, coaching, and AI governance gaps. Comparison HIPAAone vs Compliancy Group: HIPAA Software Compared HIPAAone vs Compliancy Group: risk assessment automation vs dedicated compliance coaching. Compare features, pricing transparency, and gaps before you decide. Comparison PHIGuard vs ChARM EHR: Affordable EHR vs Compliance Operations PHIGuard vs ChARM EHR: ChARM handles clinical documentation. PHIGuard handles the compliance program that surrounds it. Understand how they fit together. Comparison PHIGuard vs Klara: Patient Communication vs Compliance Operations PHIGuard vs Klara: Klara handles patient-facing communication. PHIGuard handles the internal compliance program. Understand where each fits. Comparison PHIGuard vs Luma Health: Patient Engagement vs Compliance Operations PHIGuard vs Luma Health: patient recall and engagement automation vs internal compliance program management. Understand where each fits. Comparison PHIGuard vs ModMed: EHR vs Compliance Operations Layer PHIGuard vs ModMed: ModMed covers clinical documentation for specialty practices. PHIGuard covers the compliance program that surrounds it. Comparison PHIGuard vs SimplePractice: Compliance Layer vs Practice Management PHIGuard vs SimplePractice: understand what each tool covers, where they differ, and why most SimplePractice users need both. Comparison Accountable HQ vs. Total HIPAA: Which HIPAA Software Fits Small Clinics? Accountable HQ vs Total HIPAA: compare self-serve HIPAA software, privacy officer services, pricing, and clinic fit before you sign. Comparison MedTrainer vs. Compliancy Group: HIPAA Compliance Software for Small Clinics MedTrainer vs Compliancy Group: compare training depth, coaching model, HIPAA program coverage, and pricing before you sign. Comparison PHIGuard vs. Medcurity: Ongoing Compliance Operations vs. Risk Assessment Focus PHIGuard vs Medcurity: compare risk analysis focus vs operational compliance program, immutable audit trail, and published pricing for small clinics. Comparison PHIGuard vs. MedTrainer: Operational HIPAA Compliance vs. Healthcare LMS PHIGuard vs MedTrainer: compare clinical task management, immutable audit trail, training-only vs operational fit, and published pricing. Comparison PHIGuard vs. Rippling: HIPAA Compliance Operations vs. HR Infrastructure PHIGuard vs Rippling for small clinics: HIPAA compliance operations vs. HR infrastructure — what each does, what each misses, and how to choose. Comparison PHIGuard vs Sprinto: Compliance Software for Clinical Operations vs Tech Startups PHIGuard vs Sprinto: compliance software comparison for medical clinics and tech companies. Pricing, features, and which tool fits your situation. Comparison Accountable HQ vs. Abyde: HIPAA Compliance Software for Clinics Accountable HQ vs Abyde: compare HIPAA compliance features, training, pricing structure, and fit for small medical clinics. Comparison Compliancy Group vs. Accountable HQ: HIPAA Software for Small Clinics Compliancy Group vs Accountable HQ: compare HIPAA compliance features, coaching access, pricing model, and clinic fit before you sign. Comparison Compliancy Group vs. Total HIPAA: Which Fits Your Clinic? Compliancy Group vs Total HIPAA: compare coaching access, training depth, policy coverage, and pricing for small clinic HIPAA programs. Comparison PHIGuard vs. Apptega: Clinical HIPAA Ops vs. Enterprise GRC PHIGuard vs Apptega: compare covered-entity fit, GRC complexity, clinical task support, and published pricing for small medical practices. Comparison PHIGuard vs. Drata: HIPAA Compliance for Clinics vs. Audit Prep PHIGuard vs Drata: compare HIPAA covered-entity fit, audit-prep focus, operational task support, and pricing for small medical clinics. Comparison PHIGuard vs. Intraprise Health for Small Clinic HIPAA Programs PHIGuard vs. Intraprise Health for clinics: enterprise HITRUST GRC vs. per-clinic HIPAA program and task system. Who should pick which. Comparison PHIGuard vs. HIPAA One for Small Clinic Compliance Programs PHIGuard vs. HIPAA One for clinics: annual risk assessment tooling vs. ongoing HIPAA program with tasks and audit trail. Who should pick which. Comparison PHIGuard vs. OnPage for Small Clinic HIPAA Programs PHIGuard vs. OnPage for clinics: secure clinical paging vs. HIPAA program and task management. Where they overlap and who should pick which. Comparison PHIGuard vs. Paubox for Small Clinic HIPAA Programs PHIGuard vs. Paubox for clinics: secure email and forms vs. compliance program and task management. Where they overlap and who should pick which. Comparison PHIGuard vs. Secureframe: HIPAA Compliance for Clinics PHIGuard vs Secureframe: compare HIPAA covered-entity fit, audit automation, clinical operations support, and pricing for small clinics. Comparison PHIGuard vs. Thoropass: HIPAA Compliance for Medical Clinics PHIGuard vs Thoropass: compare HIPAA clinical fit, audit automation vs operational tracking, and published pricing for small medical practices. Comparison PHIGuard vs. TigerConnect for Small Clinic HIPAA Programs PHIGuard vs. TigerConnect for clinics: secure clinical messaging vs. HIPAA compliance program and task management. Who should pick which. Comparison PHIGuard vs. Vanta: HIPAA Compliance for Small Clinics PHIGuard vs Vanta for HIPAA compliance: compare SOC 2 vs clinical fit, per-user vs pricing details published on the pricing page, and audit trail coverage. Comparison PHIGuard vs. Abyde for Small Clinic HIPAA Programs PHIGuard vs Abyde for small clinics: risk assessment, training, incident support, and pricing model compared. Comparison PHIGuard vs. Dock Health for HIPAA Operations PHIGuard vs Dock Health for clinics: task workflow, auditability, incident handling, and pricing model compared. Comparison PHIGuard vs. Compliancy Group for Clinic Compliance Operations PHIGuard vs Compliancy Group for clinics: training, policy, incident management, vendor oversight, and pricing compared. Comparison PHIGuard vs a Generic PHI Workflow Stack PHIGuard vs a generic PHI workflow stack: compare workflow control, auditability, vendor chain risk, and operational sprawl. Comparison PHIGuard vs. Total HIPAA for Small Clinic Compliance PHIGuard vs Total HIPAA for clinics: risk assessment, training, vendor support, breach response, and pricing model compared. Comparison PHIGuard vs. Accountable HQ for Small Clinic HIPAA Programs PHIGuard vs. Accountable HQ for clinics: compliance program features, audit trail, incident response, and published pricing side by side. Comparison PHIGuard vs. Asana Enterprise for HIPAA-Regulated Clinics PHIGuard vs. Asana Enterprise for medical clinics: BAA, audit trail, and published pricing compared against Asana's per-seat enterprise plan. Comparison PHIGuard vs. Healthie for Practice Compliance PHIGuard vs. Healthie: compliance task management and audit trail compared against Healthie's EHR + practice platform for small clinics. Comparison PHIGuard vs. Jotform Health for HIPAA Task and Form Workflows PHIGuard vs. Jotform Health: HIPAA forms and intake compared against PHIGuard's full compliance program and published pricing for small clinics. Comparison HIPAA Compliance Software Comparison for Small Clinics Compare HIPAA compliance software for small clinics: PHIGuard vs generic task tools on BAA coverage, audit history, and published pricing. Practice type Allergy and Immunology Practices HIPAA software for allergy and immunology practices. Recurring PHI in immunotherapy, allergen records, and compliance program fit. Practice type Endocrinology Practices HIPAA software for endocrinology practices. CGM data, insulin pump integrations, patient portal compliance, and BAA tracking reviewed. Practice type Hematology and Oncology Practices HIPAA software for hematology and oncology practices. Infusion, specialty pharmacy BAAs, clinical trial PHI, and compliance program fit. Practice type Radiation Oncology Practices HIPAA software for radiation oncology practices. Treatment planning systems, imaging PHI, MDT coordination, and compliance program fit. Practice type Rheumatology Practices HIPAA software for rheumatology practices. Specialty pharmacy BAAs, infusion scheduling, prior authorization PHI flows, and compliance fit. Practice type Addiction Medicine PHIGuard helps addiction medicine practices manage HIPAA and 42 CFR Part 2 compliance, staff training, BAAs, and audit trails. Published pricing. Practice type Community Health / FQHC PHIGuard helps community health centers and FQHCs manage HIPAA compliance, staff training, BAAs, and audit trails without enterprise software complexity. Practice type Integrative Medicine PHIGuard helps integrative medicine practices navigate HIPAA obligations across medical and wellness settings. Published pricing, published BAA details. Practice type Radiology PHIGuard helps radiology practices track PACS vendor BAAs, document access controls, manage incident response, and meet imaging record retention requirements. Practice type Reproductive Health PHIGuard helps reproductive health clinics manage HIPAA obligations, staff training, and BAA tracking under the 2024 HHS reproductive health privacy rule. Practice type Wound Care PHIGuard helps wound care clinics track home health BAAs, manage staff training, and maintain audit trails for extended patient records and wound photos. Practice type Ambulatory surgery center HIPAA compliance for ambulatory surgery centers: OR scheduling PHI, post-op records, workforce training, and audit trails. published BAA details at every. Practice type Assisted living facility HIPAA compliance for assisted living facilities: PHI risk management, workforce training, incident tracking, and BAA management. Published pricing. Practice type ENT Practice HIPAA task management for ENT: audiology, allergy, pediatric documentation, hearing-aid vendor BAAs. Pricing details are published on the pricing page. Practice type Gastroenterology Practice HIPAA task management for gastroenterology: endoscopy coordination, pathology, ASC partner BAAs, recall scheduling. Published pricing. Practice type Hospice agency HIPAA compliance for hospice agencies: caregiver coordination PHI, family disclosure controls, workforce training, and audit trails. published BAA details. Practice type Neurology practice HIPAA compliance for neurology practices: EEG/EMG PHI, cognitive assessment records, workforce training, and audit trails. published BAA details at every. Practice type Occupational therapy practice HIPAA compliance for occupational therapy: functional assessment PHI, care coordination, workforce training, and audit trails. BAA at every PHIGuard tier. Practice type Oncology practice HIPAA compliance for oncology practices: clinical-trial PHI, infusion records, workforce training, and audit trails. PHIGuard publishes BAA details on the. Practice type Ophthalmology Practice HIPAA task management for ophthalmology: surgical coordination, imaging, co-management with optometry, device data. BAA details published on the pricing page. Practice type Optometry Practice HIPAA task management for optometry: exam-to-eyewear PHI handoffs, vendor BAAs, insurance verification, medical vs vision records. Practice type Pain management practice HIPAA compliance for pain management practices: controlled substance PHI, PDMP access, workforce training, and audit trails. PHIGuard covers your full team. Practice type Pharmacy HIPAA compliance for pharmacies: manage medication dispensing PHI, workforce training, and audit trails. PHIGuard publishes BAA details on the pricing page. Practice type Plastic surgery practice HIPAA compliance for plastic surgery: before-and-after photo PHI, consultation records, workforce training, and audit trails. BAA at every PHIGuard tier. Practice type Podiatry Practice HIPAA task management for podiatry: procedure documentation, DME coordination, imaging referrals, diabetic follow-ups. published BAA details. Practice type Sleep Medicine Practice HIPAA task management for sleep medicine: HST logistics, CPAP DME BAAs, compliance follow-up, device data. BAA details published on the pricing page. Practice type Speech therapy practice HIPAA compliance for speech therapy practices: session notes, school BAA requirements, workforce training, and audit trails. PHIGuard covers your entire staff. Practice type Urgent Care HIPAA task management for urgent care: walk-in intake, shift handovers, EMR handoffs, incident logging. BAA and plan details published on the pricing page. Practice type Urology Practice HIPAA task management for urology: procedure scheduling, pathology coordination, sensitive-result messaging, device data. published BAA details. Practice type Cardiology Practice PHIGuard helps cardiology practices manage HIPAA tasks, referrals, device-clinic workflows, and incidents — BAA and audit trail. Practice type Chiropractic Practice PHIGuard helps chiropractic practices manage HIPAA tasks, insurance work, staff training, and incidents — BAA and audit trail. Practice type Dermatology Practice PHIGuard helps dermatology practices manage HIPAA tasks, clinical photos, staff training, and incidents — BAA and audit trail. Practice type Mental Health Practice PHIGuard publishes current plan and BAA details on the pricing page. Practice type OB/GYN Practice PHIGuard publishes current plan and BAA details on the pricing page. Practice type Orthopedic Practice PHIGuard publishes current plan and BAA details on the pricing page. Practice type Pediatric Practice PHIGuard helps pediatric practices manage HIPAA tasks, vaccine programs, staff training, and incidents — BAA and audit trail. Practice type Physical Therapy Practice PHIGuard helps PT practices manage HIPAA tasks, referral coordination, staff training, and incidents — signed BAA and audit trail. Practice type Dental Practice PHIGuard helps dental practices manage HIPAA compliance tasks, staff training, and incident tracking — with a built-in BAA and audit trail. Practice type Primary Care PHIGuard helps primary care clinics manage HIPAA compliance tasks, training, incident response, and audit documentation — published BAA details. State guides HIPAA compliance software by state State-focused software evaluation pages for clinics. State guides HIPAA breach notification by state State-focused incident and notice workflow pages for clinics.
Reference and trust
Pages that make the library easier to parse and verify.
Templates Free tools and templates A crawlable hub for every downloadable HIPAA checklist, worksheet, log, and template in the library. Reference Glossary Definitions for PHI, HIPAA, BAA, audit, and compliance terms used across the resource library. Editorial Contributors Review the authors, reviewers, and editorial ownership behind PHIGuard resources. Ecosystem Partner program For consultants and operators who help clinics run HIPAA work more calmly.
Operational assurance
Resources should route readers into a decision.
Use the library to understand the problem, then move into the product page, pricing, or a direct free trial depending on intent.
BAA included Legal baseline available on every plan.
Audit history Compliance actions stay reviewable later.
No card upfront Start evaluation before billing setup.
No credit card required. Add billing details later if you want service to continue after the trial.