HIPAA Compliance Guides
Practical, action-oriented compliance guidance — from determining which documents you need to building a complete compliance program. Every guide links to the tools that let you execute.
BAA vs. NPP: Which Do You Actually Need?
Side-by-side comparison of the two most commonly required HIPAA documents, who needs each, and decision flowchart.
Read guide →The HIPAA Documents Every Practice Needs
The 12 key HIPAA documents, who needs each, and where to get them — with links to generate the two most commonly required.
Read guide →HIPAA Compliance Checklist by Entity Type (2026)
Separate checklists for solo clinicians, group practices, SaaS vendors, and health plans — each with 10–12 actionable items.
Read guide →HIPAA vs. State Privacy Laws: When State Rules Win
HIPAA preemption framework, key states with stricter laws (CA, WA, TX, NY, IL, MA), and guidance for multi-state organizations.
Read guide →HIPAA Risk Assessment: What It Is and How to Do One
Step-by-step walkthrough of the Security Rule's required risk analysis — including scope, threats, controls, and documentation.
Read guide →Generate Your Required HIPAA Documents
Once you know what you need, you can generate it in minutes — no subscription, no law firm retainer.
Business Associate Agreement (BAA)
Lawyer-drafted, HHS-compliant BAA covering all required § 164.504(e) provisions. Signable PDF + editable Word. Every vendor you share PHI with needs one.
Generate a BAA — $49 →Notice of Privacy Practices (NPP)
HHS Feb 2026 model NPP — updated for reproductive health privacy provisions. Required for every covered entity with direct patient relationships.
Create an NPP — $49 →