This training provides a detailed understanding of protected health information (PHI), identifiers that comprise it, the importance of protecting it, and de-identifying it. It details the Privacy Rule, which addresses individuals’ rights regarding PHI, the proper forms of disclosure, purposes for when PHI can be used and disclosed and to which parties—and when it cannot. This training describes the Security Rule, including risks to handling electronic PHI (ePHI); administrative, physical, and technical safeguards to protect it; and use of mobile devices and social media related to PHI. The Breach Notification Rule is discussed, including when a breach of PHI occurs, assessing the extent of a breach, and steps a covered entity must take regarding a breach, including notifying patients. This training has been updated to address the 2024 HIPAA Privacy Rule To Support Reproductive Health Care Privacy.