Safety guides and audits to make your job as a safety professional easier
Course 625 Certificate
Frame not included.
Modules: 3
Hours: 3
Sectors: Healthcare

Certificate Options

  • $ PDF & Original
  • $ Original
  • $ PDF

Training Dashboard

Shipping & Handling not included for original certificate prices.


The HIPAA law is said to be the most significant act of Federal legislation to affect the health care industry since Medicare and Medicaid were rolled out in 1965. Healthcare providers and employees should take this important course to receive a summary of key elements of the HIPAA rules.

Free Training!

As an OSHAcademy student, you can access 100% of our training materials for free, including our module quizzes and course exams. We only charge a small fee if you decide to document your training with our official course certificates.

Key Topics

  • HIPAA Law Components
  • Privacy and Security Rule
  • Protecting Patients' Privacy
  • Covered Entities
  • Personal Rights
  • Good Privacy Practices
  • Protected Information
  • Sharing Health Information
  • Protected Healthcare Identifier
  • Healthcare Clearing House
  • Electronic Protected Health Information
  • Non-Compliance Enforcement
  • Training Requirements
  • Filing Complaints
  • Civil Money and Criminal Penalties
  • Administrative, Physical, and Technical Safeguards
  • Employers and Health Information in the Workplace

Target Audience

  • Employee

Frequently Asked Questions (FAQs)





HIPAA stands for "Health Insurance Portability and Accountability Act" (HIPAA). President Bill Clinton signed the bill into law on August 21, 1996. It is said to be the most significant act of Federal legislation to affect the health care industry since Medicare and Medicaid were rolled out in 1965. The law officially became effective on July 1, 1997.

HIPAA required the Secretary of the U.S. Department of Health and Human Services (HHS) to develop regulations to protect the privacy and security of certain health information.

Training Requirements

The following is a specific list of who needs to be HIPAA compliant:

  • Covered healthcare providers (hospitals, clinics, regional health services, individual medical practitioners) who carry out transactions in electronic form
  • Healthcare clearinghouses (billing services, repricing companies, community health management information systems, information systems, and value-added networks)
  • Health plans (including insurers, HMOs, Medicaid, Medicare prescription drug card sponsors, flexible spending accounts, public health authority, in addition to employers, schools or universities who collect, store or transmit EPHI, or electronic protected health information)
  • Company business associates (including private sector vendors and third-party administrators)

Course Components

This course is a summary of key elements of the HIPAA rules and not a complete and comprehensive guide to compliance. Entities regulated by the Rule are obligated to comply with all of its applicable requirements and should not rely on this summary as a source of legal information or advice.

After completing this course, you will have the knowledge of the following components:

  • privacy and security rules
  • protected healthcare identifiers (PHIs)
  • wrongful disclosure of PHI
  • personal rights under HIPAA
  • protected information
  • sharing health information
  • how to file a HIPAA complaint
  • covered entities
  • electronic protected health information
  • enforcement and penalties for non-compliance


To begin your training, click on the module links below. If you are just starting this course, you should start with module 1.

Click on the links below to access the modules. You can also click on the links at the top of the page.

Module 1 - HIPAA Overview

Learning objectives in this module include:

  • Discuss the scope of the standard and its application.
  • List and define some of the primary terms used in the standard.

Module 2 - Energy Control Program and Procedures

Learning objectives in this module include:

  • Describe the purpose of the HIPAA Privacy Rule.
  • Discuss strategies to protect patient privacy.
  • Describe the purpose of the HIPAA Security Rule.
  • Identify "covered entities" under the Security Rule.
  • Discuss how the HIPAA Privacy and Security Rules differ.
  • Discuss how the Privacy Rule applies to Protected Health Information (PHI)
  • List the 18 HIPAA Identifiers

Module 3 - Application of Controls

Learning objectives in this module include:

  • Describe procedures for preparing for shutdown.
  • Describe procedures for equipment/machinery shutdown and isolation.
  • Discuss the procedure for lockout/tagout device application.
  • Identify methods to control hazardous energy sources.
  • Discuss procedures for release from lockout tagout.
  • Describe procedures for testing or position machines.
  • Discuss requirements for coordinating with outside contractors.
  1. Your Personal Rights Under HIPAA
  2. Health Care Provider Responsibilities

Course 625 Final Exam

Congratulations on finishing the coursework! To pass the exam, you must achieve a minimum score of 70%. It is OSHAcademy's policy to protect the integrity of our exams and, as a result, we do not provide missed questions to students. We do provide missed-question module section references for study should you wish to retake the exam.

After you have studied all of the course material and taken the module quizzes, you can take the final exam. The module quizzes are optional, but we highly recommend you take each quiz, as the questions are similar to those on the final exam.

This is an open book exam. As you are taking the exam, if you find a question you are unsure of, you should use the course study guide or course web pages to research the correct answer. Don't worry if you fail the exam. You can study and retake the exam when you are ready.

Already paid for certificates?

That's great! Your exam score will be displayed in your student dashboard next to the completed course. You will also be able to view or immediately print a course PDF certificate. Your PDF transcript will also be automatically updated to include the course. If you ordered original certificates, they'll be mailed to you.

Only want free training?

That's fine. You're welcome to take all of our courses for free! We only charge a fee if you want certificates, transcripts and exam scores to document your training. We will archive your final exam results so that you can retrieve them later if you decide to purchase official certificates, cards and transcripts.

Take the Final Exam

Take the Final Exam

Course 625 Study Guide. You can save this study guide to your computer for offline studying, or print the study guide if you prefer.


1. Occupational Safety and Health Administration. (2014). HIPAA and OSHA: Whistleblower Complaints. Retrieved from:

2. U.S. Department of Health & Human Resources. (2006). Health Information Privacy. Retrieved from:

3. U.S. Department of Health & Human Resources. (2014). HIPAA Privacy Rule: What Employers Need To Know. Retrieved from:

4. U.S. Department of Health & Human Resources. (2014a). Summary of the HIPAA Privacy Rule. Retrieved from:

5. U.S. Department of Health & Human Resources. (2014b). Health Information Privacy. Retrieved from:

6. U.S. Department of Health & Human Resources. (2014c). Sharing Health Information With Family Members and Friends. Retrieved from:

7. U.S. Department of Health & Human Resources. (2014d). A Health Care Provider’s Guide to the HIPAA Privacy Rule. Retrieved from:

8. Government of Kansas. (2014). HIPAA. Retrieved from: