A Foundation for HIPAA Compliance. By: Medical Genie | Tags: Clifford Ferguson, Doctors, EHR, Healthcare, HIPAA, Medical Genie®, Office of the National Coordinator for Health IT, Practice Management, Security Risk Analysis | Comments: 0 | December 30th, 2015 A Foundation for HIPAA Compliance. Every organization should complete three processes to lay a foundation for HIPAA compliance: 1. Conduct a Security Risk Analysis. 2. Implement updated HIPAA documentation, including polices and procedures, BA Agreements, and the Notice of Privacy Practices. 3. Complete and Document HIPAA Compliance Training.