[feather_share]
The updated April 2015 guide is out for HIPAA Privacy and Security Compliance. It is intended to help SMB practices develop a plan of attack to become compliant.
If you want to get straight to the good stuff, go to page 35 and read from there:
http://www.healthit.gov/sites/default/files/pdf/privacy/privacy-and-security-guide.pdf