With physician practices increasingly vulnerable to cyber attacks and other incidents that could lead to patient information being inappropriately revealed, MGMA has developed a new member-exclusive resource to help practice leaders better understand and implement the HIPAA breach requirements. The MGMA HIPAA Breach Toolkit outlines how practices can determine if the disclosure is a reportable breach under the law and what steps the practice must take to inform patients, the federal government, and potentially even local media outlets of the disclosure. In addition, the toolkit discusses the role of business associates in the event of a data breach and offers suggestions on effectively documenting how the breach occurred and the steps practices took following identification of the breach.