Health Care Providers, Health Plans and Business Associates only need to follow a simple "3-Step Safeguard" for emails and text messages to avoid violating HIPAA, administered by the Office for Civil Rights of the U.S. Department of Health and Human Services (HHS), and text message violations of the TCPA (Telephone Consumer Protection Act), administered by the Federal Communications Commission (FCC).