About the Course

This self-paced 2.25 CE course offers targeted compliance training for independent providers and practice owners in behavioral health. With a focus on practical application, it supports professionals in aligning their clinical, administrative, and technical practices with HIPAA and HITECH requirements. Grounded in real-world scenarios, the course explores the Privacy Rule, Security Rule, and Breach Notification Rule, with specific attention to the unique challenges faced by solo practitioners and group practices.

What you'll learn

HIPAA & HITECH Foundations 

Gain a clear understanding of the Privacy Rule, Security Rule, and Breach Notification Rule as they apply to behavioral health providers in private and group practice settings.

Navigating Technology & HIPAA

Clarify how common telehealth platforms, messaging apps, and other technology "solutions" undermine HIPAA and negate regulations for data privacy. Learn how to evaluate platforms and manage vendor agreements responsibly.

Managing Risk with Confidence

Identify common compliance gaps in behavioral health settings and learn how to implement safeguards that protect your clients, your license, and your practice—without relying on institutional infrastructure.

Target Audience:

This course is intended for licensed behavioral health providers and group practice owners. seeking clear, ethical, and practical guidance on HIPAA & HITECH compliance across clinical care, documentation, and administrative operations.

Course Format

This course is delivered in a self-paced, asynchronous format, allowing participants to complete the material on their own schedule. All content is accessible online and designed for flexible, independent learning. This course was last updated in January 2026.

Content Level

This course is appropriate for behavioral health professionals with a foundational understanding of clinical practice who seek to expand their knowledge of HIPAA and HITECH compliance in independent or group practice settings.

Take control of your practice’s compliance 

with training designed for independent providers and practice owners.

$35.00

Purchase Course
Susan Rigas-Morozowich, LMSW, LCSW

Course Instructor

Susan Rigas-Morozowich, LMSW, LCSW is the CEO of TelebehavioralHealth.US, a company she co-founded in 2016 in response to longstanding structural issues in the mental health field—workforce strain, inequitable reimbursement, burnout, and the lack of flexibility and autonomy available to clinicians. With over 20 years of clinical and leadership experience, she leads a diverse, multistate team of clinicians delivering ethically grounded, accessible care across 13 states through more than 45 payer networks. Susie is also a founding board member of the Mental Health Providers Equity Alliance (MHPEA), where she advocates nationally for ethical, sustainable mental health care, equitable reimbursement, provider autonomy, and stronger oversight of insurance and tech-platform influence on clinical practice. Her expertise includes HIPAA/HITECH compliance, telehealth operations, clinical ethics, practice management, and systems-level policy analysis. She regularly teaches, consults, and leads continuing education programs focused on helping providers navigate complex regulatory, legal, and industry-wide changes.

Learning Objectives

By the end of this course, learners will be able to: 1. Identify the core requirements of the HIPAA Privacy Rule, Security Rule, and Breach Notification Rule relevant to behavioral health practice. 2. Analyze common risks to privacy and security in behavioral health settings, including those associated with telehealth and electronic communication. 3. Develop appropriate administrative, physical, and technical safeguards that align with HIPAA and HITECH standards. 4. Apply HIPAA-compliant procedures to address privacy or security incidents using realistic behavioral health scenarios. 5. Evaluate current practice workflows or documentation for compliance gaps and recommend improvements based on HIPAA best practices.

Curriculum

9 Chapters · 19 Lessons

  1. 1

    Course Introduction (5 minutes)

    1. (Included in full purchase)

      COURSE INTRODUCTION (4:20)

  2. 2

    Module 1: FOUNDATIONS OF HIPAA & HITECH COMPLIANCE (15 minutes)

    1. (Included in full purchase)

      MODULE 1: FOUNDATIONS OF DATA PRIVACY & SECURITY (15:01)

    2. (Included in full purchase)

      MODULE 1: KNOWLEDGE CHECK

  3. 3

    Module 2: THE PRIVACY RULE (22 minutes)

    1. (Included in full purchase)

      MODULE 2: THE PRIVACY RULE (21:57)

    2. (Included in full purchase)

      MODULE 2: KNOWLEDGE CHECK

  4. 4

    Module 3: THE SECURITY RULE (25 minutes)

    1. (Included in full purchase)

      MODULE 3: THE SECURITY RULE (25:21)

    2. (Included in full purchase)

      MODULE 3: KNOWLEDGE CHECK

  5. 5

    Module 4: BREACH NOTIFICATION RULE (20 minutes)

    1. (Included in full purchase)

      MODULE 4: BREACH NOTIFICATION RULE (19:16)

    2. (Included in full purchase)

      MODULE 4: KNOWLEDGE CHECK

  6. 6

    Module 5: CONSIDERATIONS FOR BEHAVIORAL HEALTH (15 minutes)

    1. (Included in full purchase)

      MODULE 5: CONSIDERATIONS FOR BEHAVIORAL HEALTH (15:48)

    2. (Included in full purchase)

      MODULE 5: KNOWLEDGE CHECK

  7. 7

    Module 6: ENFORCEMENT & PENALTIES (12 minutes)

    1. (Included in full purchase)

      MODULE 6: ENFORCEMENT & PENALTIES (11:43)

    2. (Included in full purchase)

      MODULE 6: KNOWLEDGE CHECK

  8. 8

    Module 7: CASE STUDY & APPLICATION EXERCISE (15 minutes)

    1. (Included in full purchase)

      MODULE 7: CASE STUDY & APPLICATION EXERCISE (14:14)

    2. (Included in full purchase)

      MODULE 7: KNOWLEDGE CHECK

  9. 9

    Module 8: Course Conclusion and Post-Test (5 min)

    1. (Included in full purchase)

      MODULE 8: POST-TEST AND ATTESTATION (3:39)

    2. (Included in full purchase)

      HIPAA Security & Privacy for Behavioral Health Professionals — Posttest

    3. (Included in full purchase)

      Course Evaluation

    4. (Included in full purchase)

      Course Bibliography: HIPAA & HITECH Essentials for Behavioral Health Providers & Practice Owners

Take control of your practice’s compliance

with training designed for independent providers and practice owners.

$35.00

Purchase Course

Continuing Education Credit

TelebehavioralHealth.US, #2020, is approved as an ACE provider to offer social work continuing education by the Association of Social Work Boards (ASWB) Approved Continuing Education (ACE) program. Regulatory boards are the final authority on courses accepted for continuing education credit. ACE provider approval period: 6/28/2025-6/28/2028. Social workers completing this course receive 2.25 ethics continuing education credits. To earn CE credit, participants must complete all modules, pass the post-test with a score of 80% or higher, and submit a course evaluation. Learners may retake the post-test up to 3 times to achieve the required passing score. Certificates of completion are issued automatically upon successful completion of all course requirements.

Refunds & Cancellations 

Requests must be emailed to [email protected] within 7 days of purchase, as long as no more than one module has been completed. No refunds will be issued after that point.

ADA Accommodations

To request accommodations, please email [email protected]

Questions or Grievances

For questions or to report a grievance, contact [email protected]