by Daniel J. Solove
I recently created a new resource page for the TeachPrivacy website: HIPAA Training Requirements: FAQ.
HIPAA has extensive training requirements, and they are often a source of many questions and confusion. Whom do they apply to? What topics must covered entities train on? Do business associates need to have HIPAA training? Which employees must be trained under HIPAA? How often must people be trained? How long should HIPAA training be?
In this page, I walk through the HIPAA training requirements and explain what is required and what isn’t. I will also provide information about what many institutions do for HIPAA training and my thoughts about best practices.
* * * *
This post was authored by Professor Daniel J. Solove, who through TeachPrivacy develops computer-based privacy training, data security training, HIPAA training, and many other forms of awareness training on privacy and security topics.
Professor Solove is the organizer, along with Paul Schwartz of the Privacy + Security Forum (Oct. 21-23 in Washington, DC), an event that aims to bridge the silos between privacy and security.