Quickstart: your first 30 minutes | Accountable Docs

Quickstart: your first 30 minutes

A short, opinionated path from sign up to your first compliance score.

An opinionated path from a fresh Accountable account to a working compliance program. Most teams complete this in 25–35 minutes.

Before you start

Have your organization's legal name, business address, and a list of the apps you use that touch patient data. You can fill in details as you go, but having those handy speeds things up.

1. Create your organization

Sign up at app.accountablehq.com. During setup, you'll choose whether your organization is a Covered Entity or a Business Associate — this determines which compliance workflows and policy templates are most relevant.

You'll provide your company name and basic details. The AI-powered onboarding will ask about your website, employee count, what types of PHI you handle, and which cloud services you use — this helps Accountable tailor your compliance program from the start.

2. Add the basics

  1. Add your locations

    Open Locations from the left sidebar and add every physical address that handles PHI. Even single-location organizations should add their primary address — it's referenced in policies and BAAs.

  2. Invite your team

    Add your team under People by sending email invitations. New team members automatically get assigned core HIPAA and Security Awareness training when they join.

  3. Connect Google Workspace or Microsoft 365 (optional)

    If you use either, connecting it under Settings → Integrations lets you import your team and powers MFA Review and Access Controls automatically.

3. Run your first risk assessment

Open Assessments from the Compliance section in the left sidebar and start a new Security Risk Assessment. Step through the questions — don't try to be perfect. Partial answers are fine. The goal is to get a baseline so the rest of the program has something to point at.

Accountable risk assessment workflow showing categorized questions and a running score

Use Compliance Copilot here

Open Compliance Copilot from the left sidebar and ask it to "take a first pass at our security risk assessment and flag anything you can't answer." It will suggest answers based on what it knows about your organization and surface the gaps you need to handle yourself.

4. Adopt the policy library

Go to Policies. Accountable has already drafted the full set you need for HIPAA — Privacy, Security, Breach Notification, and the supporting procedures. Your organization name, address, and designated officers are auto-filled from your profile. Click each one to review, edit anything that doesn't match how you actually operate, and click Publish.

See the policy library for which policies you need and why.

5. Assign HIPAA training

Open Training under People & Training. Core HIPAA and Security Awareness training is automatically assigned to new team members. You can also assign additional modules — like Bloodborne Pathogens for clinical staff, or Sexual Harassment Prevention where state law requires it.

6. Start your vendor inventory

Open Manage Third Parties under the Third Parties section. Add the obvious ones first — your EHR, your email/calendar provider, your billing platform. For each one, generate or upload the BAA. You can also use Vendor Discovery to automatically identify vendors connected to your Google Workspace or Microsoft 365.

What good looks like after 30 minutes

You should have an organization profile, a starting compliance score, your full policy library published, training assigned to your team, and your three or four most critical BAAs in flight. Everything else is iteration.

Next steps

Set up your organization

Org profile, locations, and roles in detail.

Meet Compliance Copilot

The AI agent that helps with the rest of the work.
Last updated April 29, 2026
Was this helpful?