HIPAA/Privacy and Data Security  Compliance

HIPAA (Health Insurance Portability and Accountability Act) and associated legislation impose complex rules and regulations on your organization to ensure the privacy and security of Protected Health Information (PHI). Abiding by these rules is a dynamic process, complicated daily by the increase in the use of technology to store and transmit PHI.  To avoid violations, your organization must adopt a process to implement HIPAA policies and procedures, proactively assess risk and potential liability, continually train staff, and implement prospective compliance programming. 

At Compliagent, we guide clients ranging from physician groups to medical device companies, law firms, and nursing homes to full compliance with HIPAA and associated privacy and security rules.  Our consultants, certified in Healthcare Compliance by the Compliance Certification Board, will tailor the following services to your organization needs, and keep you apprised of any changes in legislation that may affect your program:

REGULATORY COMPLIANCE

Compliagent works with our clients to get them in compliance, whether it be HIPAA, NIST or ISO standards.  We develop policies and procedures, training materials, and compliance infrastructure to ensure that your organization stays in compliance.

DATA PRIVACY & SECURITY

Our data privacy and security practice ensures that your information is protected at all times.  Compliagent consultants provide the industry knowledge and support to keep your organization and its assets safe and reduce vulnerabilities. 

RISK ASSESSMENT, MANAGEMENT, AND MITIGATION

Our Consultants work to ensure that your organization is fully informed regarding its risks. We perform comprehensive qualitative assessments that will give your organization a clear picture of its risk landscape.  We also help prioritize risk mitigation, implement mitigation measures, and manage your organization's threats, vulnerabilities and costs related to information security.

BREACH RESPONSE 

If your organization’s security of PHI has been breached, we promptly will:

  • Advise on reporting responsibilities

  • Assist with breach mitigation

  • Conduct Breach Risk Assessment in accordance with regulatory requirements.

  • Develop and implement Plan of Correction

ENFORCEMENT ACTIONS AND LITIGATION SUPPORT

If your organization is facing enforcement actions or litigation, we will work with you and your legal counsel as an expert witness.

To learn more about HIPAA and HITRUST, please visit the U.S. Department of Health and Human Services.