How do I become HIPAA compliant?

In order to meet HIPAA compliance requirements for software development you need to ensure you’re meeting the four main requirements of the HIPAA law.

  • HIPAA Privacy Rule
  • HIPAA Security Rule
  • HIPAA Enforcement Rule
  • HIPAA Breach Notification Rule


The HIPAA Security Rule requires appropriate Administrative, Physical, and Technical Safeguards to ensure the confidentiality, integrity, and security of protected health information (PHI).


TrueVault ensures that all Technical and Physical Safeguards are met for data stored on TrueVault’s servers. You can implement the Administrative Safeguards yourself, or hire a third-party consultancy to advise you on this process. Accountable is a great software service that walks you through the Administrative Safeguards step by step.

You can view all of these rules in our HIPAA compliance checklist.