HIPAA / HITECH Security Compliance Program

hipaa_1SystemExperts is dedicated to keeping your data safe, secure, and compliant. We’ve been helping organizations of all sizes comply with complex regulations surrounding HIPAA and electronic Protected Health Information (ePHI) since 2007.

Our HIPAA / HITECH Compliance Program ensures fully documented compliance with the requirements of each rule, setting you up for success and letting your team focus on what’s important. We help our clients expeditiously and cost-effectively progress through the entire compliance life-cycle and address the requirements enforced by the Department of Health and Human Services (DHHS). Specifically, SystemExperts assists its clients in preparing for the required ongoing HIPAA / HITECH reviews against the security aspects of the Security, Breach Notification, and Privacy Rules. The reviews are conducted in an exacting and professional manner, documenting compliance with the requirements of each rule, and providing a HIPAA / HITECH Compliance Statement.

The SystemExperts HIPAA / HITECH Compliance review covers:

  • Security Rule Administrative Safeguards
    • Security management process
    • Assigned security responsibility
    • Workforce security
    • Information access management
    • Security awareness & training
    • Security incident procedures
    • Contingency plan
    • Evaluation
    • Business associate contracts
  • Security Rule Physical Safeguards
    • Facility access controls
    • Workstation use
    • Workstation security
    • Device & media controls
  • Security Rule Technical Safeguards
    • Access control
    • Audit controls
    • Integrity
    • Person or entity authentication
    • Transmission security
  • Breach Notification Rule Requirements
    • Risk Assessment of Breach
    • Notifications (Content, Timeliness, and Burden of Proof)
    • Training
    • Sanctions
  • Privacy Rule Requirements
    • Privacy Policy and updates
    • Business Associate Agreements
    • Notice of Privacy Practices
    • De-Identification of PHI
    • Training
    • Sanctions

Additional HIPAA / HITECH security compliance services include:

  • HIPAA/HITECH Immersion Sessions – Conducting a one day comprehensive workshop to help organizations understand the HIPAA requirements as it relates to the organization’s business context
  • Compliance Preparation – Providing advice and assistance with implementing a HIPAA/HITECH compliant infrastructure and program
  • HIPAA/HITECH Security and Privacy Awareness Training – Developing and delivering Security and Privacy Awareness Training to all workforce members that handle Protected Health Information (PHI)
  • Business Associate Reviews – Performing HIPAA/HITECH reviews on business associates, service providers, and other third parties to ensure that they provide HIPAA/HITECH compliant services.

Contact SystemExperts to request a free and confidential HIPAA consultation by phone.