LetterStream and HIPAA

Getting Started

At LetterStream, compliance with HIPAA and Medicare Part D standards is a core part of our operations. While businesses themselves cannot obtain a formal HIPAA certification, our employees undergo certified training to ensure secure handling of sensitive data.


In This Article


Employee Training and Certification

  • All LetterStream employees complete recurring third-party training to earn an individual:
    • HIPAA Certificate for Business Associates
    • Medicare Part D Training Certificate
  • These certifications are kept on file for audit purposes
  • Certifications are not generally shared due to privacy, as they include employee names

HIPAA Certification for Businesses

  • There is no official HIPAA certification available for businesses
  • According to the U.S. Department of Health and Human Services (HHS):
    • HIPAA rules are designed to be flexible and scalable
    • No standardized program exists that would apply universally to all entity types and sizes

Reference from HHS

For more details, the HHS provides clarification here:

“The HIPAA Rules are flexible and scalable to accommodate the enormous range in types and sizes of entities that must comply with them. This means that there is no single standardized program that could appropriately train employees of all entities.”

Source: HHS.gov HIPAA Training

Still need help? Contact Us Contact Us