When Is a Privacy Incident Reportable? What ABA Leaders Need to Know

Jan 08, 2026

Privacy breaches are an ongoing compliance risk for ABA providers, and knowing when a breach is reportable is critical for protecting your organization, your clients, and you. Many ABA business and clinical leaders are surprised to learn that not every privacy incident has to be reported (but plenty of them do) often under both federal and state law. With the deadline coming up at the end of February to report smaller HIPAA breaches that occurred in 2025 to HHS, now’s a good time to revisit how reportability decisions actually work. To help, we’ve created a free HIPAA Breach Reportability Decision Tool for ABA Providers that walks you through a four-factor risk assessment you should complete when a privacy incident happens, and highlights key reporting deadlines. We’ll also break this down using real-world ABA scenarios and share how ongoing compliance support can help you handle breaches with more confidence and less guesswork.

Subscribe to keep reading this post

Already have an account? Log in

HIPAA Training Isn’t About HIPAA (Really)

Effective HIPAA training for ABA agencies isn’t really about teaching the HIPAA rules at all. It’s about helping your team understand and follow your agency’s own privacy and security policies. In this article, we break down what HIPAA actually requires, why generic trainings fall short, and how ABA providers can create training that truly supports compliance. Subscribe to keep r...

Is Your Record Retention Policy Protecting You — or Creating Risk?

If you run an ABA organization, your documentation practices play an important role in your corporate compliance program. But even with the best session notes, billing systems, and employee files, your agency could still face risk if your record retention policy isn’t clear, consistent, and up to date. Every ABA provider manages a wide range of clinical, financial, and administrative records a...

How to Know What to Audit: A Practical Guide for ABA Leaders

If you’re responsible for compliance in an ABA organization, you already know how important regular audits are, but deciding what to audit next isn’t always clear. Maybe you’ve already reviewed session notes, billing, and supervision records and are wondering, “What else should I be looking at?” The answer lies in building a proactive system that identifies risk before it becomes a problem. Th...

ABA Compliance Chronicle

ABA Compliance Chronicle keeps ABA companies informed and prepared when it comes to compliance and quality assurance. Get expert insights, practical tips, and regulatory updates to confidently navigate requirements. Stay ahead with best practices and industry news, so you can focus on delivering exceptional services while staying compliant.