ComplyCreate
Free HIPAA Resources

Understand HIPAA. Generate the docs you need.

Plain-English HIPAA guides for healthcare providers, health IT teams, and SaaS founders — plus the fastest path to a compliant BAA or NPP.

Business Associate Agreement

Need a HIPAA BAA?

Answer a few questions and get a signable PDF + editable Word doc. Built on HHS model provisions (45 CFR § 164.504(e)).

Generate a BAA →
Notice of Privacy Practices

Need a HIPAA NPP?

Create a compliant Notice of Privacy Practices. Includes HHS Feb 2026 model + 42 CFR Part 2 SUD language where applicable.

Create an NPP →
Not sure which you need? Take the 2-minute self-assessment →

HIPAA Guides

View all guides →
Foundational

What Is HIPAA?

The five rules, who they apply to, and what compliance actually requires.
Foundational

HIPAA Covered Entities

Definition, examples, and a decision checklist for your organization.
Foundational

HIPAA Business Associates

What makes a vendor a BA, what they owe covered entities, and when a BAA is required.
Core Concepts

Protected Health Information

The 18 PHI identifiers and when de-identified data leaves HIPAA's scope.
Enforcement

HIPAA Penalties in 2026

Penalty tiers, inflation-adjusted maximums, and recent OCR enforcement examples.
Decision Guide

BAA vs. NPP: Which Do You Need?

Side-by-side comparison so you can spot which document your situation requires.

By Industry

All industries →
🧠
Therapists
🦷
Dental Practices
💙
Mental Health
💻
Telehealth
🏥
Medical Practices
Free Download

HIPAA Compliance Starter Kit

A 7-page PDF with a compliance checklist, HIPAA glossary, document roadmap, and 2026 deadline reference — delivered to your inbox instantly.

2-Minute Assessment

Are you a covered entity, a business associate, or neither?

10 questions. Instant result. Find out which HIPAA rules apply to your organization and which documents you actually need.

Take the Free Quiz →
Grounded in federal regulation
Every guide cites 45 CFR, HHS guidance, or OCR enforcement records directly.
Reviewed twice annually
Content is reviewed after major rulemaking plus twice per year. Published dates shown on every page.
Part of the ComplyCreate family
Sister sites BAAGenerator.com and NPPGenerator.com have served thousands of healthcare organizations.

Recent Updates

All updates →
Feb 2026

42 CFR Part 2 Final Rule: What Changed

HHS's Feb 2026 Part 2 Final Rule aligns SUD confidentiality requirements with HIPAA. Here's what it means for your practice.
2025–2026

OCR Enforcement Trends

Pattern analysis of recent resolution agreements — and which HIPAA gaps are drawing the biggest fines.
2026

HIPAA Changes in 2026: Full Roundup

Part 2 Final Rule, proposed Security Rule updates, and every other meaningful HIPAA change this year.

Frequently Asked Questions

What is ComplyCreate?
ComplyCreate is a free HIPAA education hub. We publish plain-English guides, compliance checklists, a self-assessment quiz, and regulatory updates. We're the sister site to BAAGenerator.com and NPPGenerator.com, which generate actual HIPAA documents.
Do I need a BAA or an NPP?
A BAA (Business Associate Agreement) is required when a covered entity shares PHI with an outside vendor. An NPP (Notice of Privacy Practices) is a patient-facing document every covered entity must distribute. Many organizations need both. See our BAA vs. NPP comparison or take the free self-assessment quiz.
Is ComplyCreate free?
Yes, entirely. All guides, checklists, and the quiz are free. The Starter Kit PDF is delivered free via email. For paid document generation, visit BAAGenerator.com ($49 one-time) or NPPGenerator.com ($49 one-time).
Who should use ComplyCreate?
Healthcare providers, practice administrators, health IT founders, SaaS vendors selling to healthcare, and anyone trying to understand their HIPAA obligations. If you already know what document you need, go directly to BAAGenerator.com or NPPGenerator.com.