AFECHTAssociation for Electronic Health Care Transactions is dedicated to supporting the use of EDI to improve and reduce the costs of health care. AFEHCT addresses both technical and policy issues to meet the challenges of health care EDI and is recognized as a leader by government health care and legislative organizations.

AHA - American Hospitals Association website has good coverage on HIPAA. The AHA represents and serves all types of hospitals, health care networks, and their patients and communities. Close to 5,000 hospitals, health care systems, networks, other providers of care and 37,000 individual members form the AHA. Through representation and advocacy activities, AHA ensures that members' perspectives and needs are heard and addressed in national health policy development, legislative and regulatory debates, and judicial matters.

AHIMA - American Health Information Management Association is a professional association that represents more than 40,000 specially educated health information management professionals who work throughout the healthcare industry. They have a HIPAA pages with articles from the Journal of AHIMA, as well as other HIPAA information.

- American Health Lawyers Association provides resources to address the issues facing its active members who practice in law firms, government, in-house settings and academia and who represent the entire spectrum of the health industry: physicians, hospitals and health systems, health maintenance organizations, health insurers, managed care companies, nursing facilities, home care providers, and consumers.

AMIA - American Medical Informatics Association is a nonprofit 501(c)(3) membership organization of individuals, institutions, and corporations dedicated to developing and using information technologies to improve health care. They have a page on their site devoted to Public Policy and Legislation updates.

Beacon Partners - A national health care consulting firm that is a recognized leader in the HIPAA arena. With over seven years of HIPAA experience, Beacon provides a full range of services related to HIPAA compliance from initial education and & assessment through remediation, implementation and on-going monitoring.

CMS - Centers for Medicare and Medicaid Services, formerly known as the Health Care Financing Administration (HCFA), is the federal agency responsible for administering the Medicare, Medicaid, SCHIP (State Children's Health Insurance), HIPAA (Health Insurance Portability and Accountability Act), CLIA (Clinical Laboratory Improvement Amendments), and several other health-related programs.

DHHS - Department of Health and Human Services website containing information specifically on the Administrative Simplification section of HIPAA.

DHHS Data Council - The HHS Data Council coordinates all health and non-health data collection and analysis activities of the Department of Health and Human Services, including an integrated data collection strategy, coordination of health data standards and health information and privacy policy activities. The Secretary has placed the Data Council in charge of the implementation of the Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996.

EHNAC - The Electronic Healthcare Network Accreditation Commission is an independent, not-for-profit accrediting body. It is comprised of an Executive Director and eleven (11) industry and consumer representatives from health care transaction processors, private & government payers or insurers, self insured plans, health care providers, appropriate trade associations, consumer organizations and the general public. EHNAC Accreditation provides an independent peer evaluation of an organization’s ability to perform at certain industry-established criteria. The process allows companies to review their existing performance levels and to bring those levels into accordance with industry-established criteria with the help of the accrediting body and industry mentors.

Forum on Privacy and Security in Healthcare - a HOST-affiliated, industry group working with the National Information Assurance Partnership (NIAP), a government agency, to provide a wide-based industry view on security issues confronting healthcare.

HCCA - The Health Care Compliance Association is the only national, nonprofit organization solely dedicated to improving the quality of health care compliance.  Its mission is to provide a collaborative forum promoting integrity and ethical behavior through the development of comprehensive compliance programs throughout the entire health care industry. 

Health Data Management - Health Data Management magazine's web site posts breaking news twice daily and is a great source for healthcare industry news, much of it related to HIPAA.

Health Hippo - Health Hippo is a collection of policy and regulatory materials related to health care, with some graphics sprinkled in. It would be wise to confirm anything you intend to rely on with a hardcopy of the reference. Space for the Hippo is provided by the kind folks at FindLaw.

HealthLeaders - An on-line health leadership community whose purpose is to provide an online environment that aligns healthcare resources with the needs of healthcare leaders. The mission is to be an online facilitator for sharing content, communication, and commerce. - a Coalition of Non-profit Healthcare Organizations, Drives Implementation of HIPAA eHealth Security Standards.

Health Privacy Project - A part of the Institute for Health Care Research and Policy at the Georgetown University Medical Center, the HPP is dedicated to raising public awareness of the importance of ensuring health privacy in order to improve health care access and quality, both on an individual and a community level.

HIPAA GIVES - Government Information Value Exchange for States (GIVES) is a collaborative state government health care focus group resulting in the sharing of information through a clearinghouse highway and providing a forum for discussing and resolving issues in meeting the Health Insurance Portability and Accountability Act (HIPAA) legislation.

HIPAA LINKS - a web site that contains just links to other sites that address HIPAA.

HIPAA Privacy Joint Information Center - a joint effort of the Ohio Hospital Association and Brickler & Eckler LLP.

JHITA - Joint Healthcare Information Technology Alliance (JHITA) formed by AHIMA, AMIA, CHIM, CHIME and HIMSS with the intent of providing advocacy activities that focus on identifying issues having the broadest impact on the Alliance membership. The Alliance monitors national legislative and regulatory activities and reports on those activities to the Alliance membership. Current issues of focus include: medical records confidentiality and HIPAA administrative simplification rule making.

NCVHS - National Committee on Vital Health Statistics. A public advisory body to the Secretary of HHS in the area of health data and statistics. The Committee provides advice and assistance to the Department and serves as a forum for interaction with interested private sector groups on a variety of key health data issues including health statistics, electronic interchange of health care information, privacy and security of electronic information and population-based public health.

Network World Fusion - An on-line community devoted to issues related to networking. There is relevant information specific to Privacy and Security.

NIST - National Institute of Standards & Technology. An agency of the US Commerce Department's Technology Administration, this web page provides links to publications addressing security in information technology.

NUCC - The National Uniform Claim Committee. The NUCC was formally named in the administrative simplification section of the HIPAA of 1996 as one of the organizations to be consulted by the American National Standards Institute's accredited SDOs and the Secretary of HHS as they develop, adopt, or modify national standards for health care transactions. As such, the NUCC is intended to have an authoritative voice regarding national standard content and data definitions for non-institutional health care claims in the United States.

OCR - The Office for Civil Rights is the enforcement agent for the Privacy regulations addressed by HIPAA Administrative Simplification. Included in this website are guidelines on HIPAA Privacy, instructions and forms for reporting breaches of privacy and other health information privacy information.

Ropes & Gray - Ropes & Gray is a national law firm serving the needs of businesses throughout the country and the world. Our more than 450 lawyers provide comprehensive legal services from Boston, New York, Providence, Washington, D.C., and facilities in London. Clients include large and small companies, financial institutions, government agencies, hospitals and health care organizations, colleges and universities, and families and individuals. Ropes & Gray has a nationally recognized health law practice and represents academic medical centers, multi-provider networks, community hospitals, physician organizations, managed care organizations and a wide variety of proprietary and nonprofit specialty providers.

RX 2000 Institute - Focused on creating an online healthcare learning community that forms naturally around stimulating and relevant best practices; where members can easily tap into collective wisdom and where successful experiences and outcomes are captured and instantly shared. This website has a HIPAA Knowledge Center with free and fee-based downloads available. -  this security specific information resource for IT professionals has published a nine-part package or articles on meeting April 2005's HIPAA security rules. The series is broken into three main bars examining three distinct health care groups impacted by HIPAA: Insurance companies, hospitals and sole practitioners. Other stories focus on compliance officers, tools, consultants’ views of readiness, rules at a glance, etc.

SMP - Security Management Partners is a leader in the field of data security consulting providing a wide range of services, including audits, assessments, maintenance, enhancements, and counsel to businesses across the United States.

THOMAS - Legislative Information on the Internet.  HIPAA is Public Law 104-191, H.R. 3103

WEDI Workgroup for Electronic Data Interchange. Their goal is to  improve health care through Electronic Commerce and to foster widespread support for the adoption of electronic commerce within health care. 

WEDI/SNIP is the Strategic National Implementation Process for Complying with the Administrative Simplification Provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

V-ONE Corporation - V-ONE Corporation develops and markets the SmartGate VPN suite of network security products for government and commercial customers worldwide. The SmartGate VPN client/server product provides an electronic commerce Virtual Private Network solution, offering global deployment, flexible scalability, mobility and ease of use. SmartGate VPN offers encryption, authentication, and access control for customers implementing electronic solutions over the Internet, interfaces with leading certificate authorities (CA).

White Papers from PS-TG - Private Sector Technology Group is the trade association that represents technology companies that provide systems and services to HCFA, primarily on the Medicaid side. Click on the link above to access White Papers they have developed in response to an HCFA request to study the impact of HIPAA on the Medicaid Management Information System that states use to administer the Medicaid Program.

WPC - Washington Publishing Company (WPC) specializes in managing and distributing Electronic Data Interchange (EDI) information, primarily in the form of documentation for organizations that develop, maintain, and implement EDI standards.