CyPHIcomplyTM Policies And Procedures Compliance Tools


CyPHIcomplyTM is a monthly membership program for $59.99 per month billed annually. Membership entitles the purchaser to regulatory updates and new version releases, including the forthcoming software as a service (SaaS) version 5.2 that will be released in late 2018 Q3. Also, CyPHIcomplyTM provides members the Meaningful Use Concordance that links Meaningful Use Security Measure Criteria to pertinent HIPAA Security Rule Standards and Implementation Specifications; Word Worksheets for tailoring Safeguard Policies and Procedures to Risk Analysis Findings; and a set of Excel Risk Analysis Table Worksheets.

CyPHIcomplyTM created its comprehensive, affordable set of Safeguard Compliance Tools to help covered entities and business associates get on the path to compliance with HIPAA Privacy and Security and HITECH Act Breach Notification Rules and to avoid costly consequences of noncompliance discovered in an audit or investigation by the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS). Each Safeguard Compliance Tools Set applies to a single physical facility of a covered entity or business associate that creates, receives, maintains, or transmits protected health information.  If your organization has multiple such facilities, it needs a separate Safeguard Compliance Tool Set for each facility. CyPHIcomplyTM automatically embeds the organization-designated facility name on each page of the Tool Set and in each safeguard policy and procedure.

Purchasers receive the following:

CyPHIcomply v.5.1 PDFs

User Guide 

HIPAA Privacy Rule

  • Use, Disclosure, and Access Safeguards
  • Administrative Requirements

HIPAA Security Rule

  • Administrative Safeguards
  • Risk Analysis Template
  • Business Associate Agreement
  • Physical Safeguards
  • Technical Safeguards
  • Compliance Protocols

HITECH Act Breach Notification Rule

  • Notification Requirements

HIPAA Safeguard Training Curriculum

  • Curriculum, Test, and Answer Key

Meaningful Use

  • Link of Security Measure Criteria to HIPAA Security Rule Standard Implementation Specifications

HIPAA Privacy Rule Policy and Procedures Worksheets

  • Use, Disclosure, and Access
  • Administrative Requirements

HIPAA Security Rule Policy and Procedure Worksheets (combined)

HITECH Act Breach Notification Policy and Procedure Worksheets

HIPAA Privacy and Security Rule Forms

HIPAA Security Rule Risk Analysis Template Tables

Why You Need Caiphi’s Digital Guide To Demonstrate Compliance?


Helps your business demonstrate compliance with federal safeguard policies and procedures that are readily accessible in CyPHIcomplyTM files.


Enhances your business knowledge and awareness with up-to-date information and guidance on federal safeguard regulations, including the emergent NIST Cybersecurity Framework., so that your organization knows that its policies and procedures are thorough, consistent, and appropriate.


Facilitates through easy-to-follow tabular format identification and compilation of your business information for conducting NIST-based risk analysis requirements and generating findings that link to CyPHIcomplyTM’s written HIPAA Security Rule policies and procedures that your organization can tailor to its business environment.


Includes over 140 written standard policies and procedures that your organization can tailor to its business environment based on findings from CyPHIcomplyTM’s linked Risk Analysis Template.


Implementation specifications for certain HIPAA Privacy and Security Rule standards require action, activities, and assessment documentation, which CyPHIcomplyTM has captured in forms that are embedded with appropriate implementation specification policies and procedures and available in a Word format compilation.


Allows your organization Privacy and Security Officials to administer safeguard training as an evolutionary process starting with the risk analysis and continuing in implementation of safeguard policies and procedures.  The curriculum, training, and testing process—including a workforce member policy and procedure study period of three weeks—is designed to heighten workforce member “awareness and understanding” of safeguards in an effort to mitigate the likelihood of privacy breaches and security incidents.


The Best Method of Contacting Us is Email:


Please provide your name, email address, telephone #, and message in the space to the right to learn more about CyPHIcomplyTM monthly membership program.

Before you send us a message, note the following:

CyPHIcomplyTM is not legal advice.  Consult an attorney for legal advice.  CyPHIcomplyTM does not include implementation consulting, but does include with each required standard and implementation specification information and guidance from federal sources such as the National Institute of Standards and Technology (NIST) and the Office for Civil Rights (OCR) of the Department of Health and Human Services (HHS) to help your organization implement policies and procedures in order to comply with HIPAA Privacy and Security and HITECH Act Breach Notification Rules. CyPHIcomplyTM only applies to federal regulations and does not address state or local requirements pertaining to privacy, security, or breach notification. Again, consult an attorney on those state and local requirements.

If your organization needs assistance with implementation, CAIPHI may be able to provide you with the names of contractors that do such work.

    Contact Us

    We're not around right now. But you can send us an email and we'll get back to you, asap.

    Not readable? Change text. captcha txt