Mastering 42 CFR Part 2: SAMHSA vs. HIPAA

Mastering 42 CFR Part 2: SAMHSA vs. HIPAA

Presenter: Brian L Tuttle

Are you confident your organization is properly managing sensitive substance use and mental health records?

This 90-minute session is your go-to guide for understanding and applying SAMHSA’s 42 CFR Part 2 regulations alongside HIPAA. With updates from 2024 and 2025 now in effect, it’s more important than ever to stay compliant.

Join us to gain clarity on federal and state-level confidentiality requirements, including real-world examples and frequently asked questions. You'll learn how to determine when each law applies, how to document disclosures properly, and how to avoid the pitfalls that lead to audits or costly legal action.

This session is ideal for healthcare providers, practice managers, billing and IT staff, and any business associates working with substance use disorder or behavioral health records.

Key Takeaways:

✅ 2025 SAMHSA 42 CFR Part 2 and HIPAA regulation updates
✅ When to apply each law in real-world scenarios
✅ Proper documentation and disclosure practices
✅ Risk factors for breach and audit—and how to prevent them

Who Should Attend:

• Practice Managers
• Behavioral Health Providers
• Hospitals and Clinics
• Billing and Transcription Firms
• Legal Advisors
• IT Vendors Managing PHI
• Health Insurance and Compliance Officers

Presenter: Brian L Tuttle

Brian L Tuttle Nationally Renowned HIPAA Compliance Consultant CPHIT, CHP, CHA, CCNA, CISSP, CBRA, Net +, “The HIPAA Guy” is a Certified Professional in Health IT (CPHIT), Certified HIPAA Professional (CHP), Certified HIPAA Administrator (CHA), Certified Business Resilience Auditor (CBRA), Certified Information Systems Security Professional (CISSP) with over 18 years' experience in Health IT and Compliance Consulting. With vast experience in health IT systems (i.e. practice management, EHR systems, imaging, transcription, medical messaging, etc.) as well as over 18 years’ experience in standard Health IT with multiple certifications and hands-on knowledge, Brian serves as compliance consultant and has conducted onsite and remote risk assessments for over 1000 medical practices, hospitals, health departments, insurance plans, and business associates throughout the United States.