According to the United States Department of Health and Human Services, approximately 70% of organizations are not HIPAA Compliant. 

The Health Insurance Portability and Accountability Act, known as HIPAA, mandates industry-wide standards for health care information and electronic billing, and requires protection as well as confidential handling of protected health information. According to HIPAA rules, any company that deals with protected information must have a physical network and process security measures that are followed to ensure compliance. 

It may be safe to say that many organizations are still perplexed about HIPAA audits, enforcements and compliance. As a result, the number of organizations that fail to meet compliance each year remain the majority. To begin understanding compliance, healthcare organizations would be wise to consider three key recommendations.