Compliancy Group News

EDBS Dental Billing Solutions Verified as HIPAA Compliant

Posted by HIPAA Journal

Compliancy Group has recently verified that EDBS Dental Billing Solutions is fully compliant with all appropriate provisions of the Health Insurance Portability and Accountability Act (HIPAA) Rules and the HITECH Act.

EDBS Dental Billing Solutions provides billing services to dental practices in Washington DC, Maryland, and Virginia, and across the United States. The company’s remote dental insurance and claims billing, dental patient billing, and dental insurance verifications solutions ease the burden on dental front office staff by helping them deal with the intricacies of insurance billing and the challenging task of collecting patient bills.

The services provided naturally require EDBS Dental Billing Solutions to come into contact with the protected health information of dental patients, which makes EDBS Dental Billing Solutions a business associate under HIPAA. Achieving and maintaining HIPAA compliance can be challenging for business associates, which is why many choose to work with a third-party compliance company. By partnering with compliance experts they can ensure that no requirements of HIPAA are overlooked.

EDBS Dental Billing Solutions partnered with Compliancy Group and used the company’s proprietary HIPAA methodology to ensure complete compliance, tracking progress on the compliance journey by using Compliancy Group’s compliance software – The Guard. Through the use of the software, EDBS Dental Billing Solutions was able to methodically ensure complete compliance with all appropriate provisions and implementation specifications of the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules, and the HITECH Act.

After completing Compliancy Group’s Six Stage Implementation Program, the good faith effort of EDBS Dental Billing Solutions to achieve HIPAA compliance was assessed by Compliancy Group’s HIPAA compliance experts, who confirmed that EDBS Dental Billing Solutions was fully compliant with the HIPAA Rules and had implemented an effective HIPAA program to ensure future compliance. EDBS Dental Billing Solutions has now been awarded Compliancy Group’s HIPAA Seal of Compliance, which demonstrates to current and future clients that the company takes HIPAA compliance seriously and is committed to ensuring the privacy and security of the electronic protected health information of its clients.

“Since the nature of our business being exclusively remote, we take HIPAA compliance very seriously. With the help of Compliancy Group, we are able to take steps to fortify our systems to protect PHI information and familiarize each employee about HIPAA and how we can further safeguard PHI data,” said EDBS Dental Billing Solutions founder, Goldie De Leon.

The post EDBS Dental Billing Solutions Verified as HIPAA Compliant appeared first on HIPAA Journal.

Midwest IT Systems Confirmed as HIPAA Compliant

Posted by HIPAA Journal

Midwest IT Systems, a Blue Earth, MN-based provider of managed IT services, data backup and recovery, VoIP and cybersecurity services to businesses in Southern Minnesota and Northern Iowa, has recently demonstrated compliance with the regulatory standards of the Health Insurance Portability and Accountability Act (HIPAA). Midwest IT Systems was formed in 2001 by former CIA Office of Security staff member, Allen Aukes, and helps small- to medium-sized businesses by managing their day-to-day IT requirements and securing their networks against the full range of cyber threats.

Companies that provide managed IT services to healthcare organizations are classed as business associates under HIPAA, as the provision of those services may involve contact with electronic protected health information (ePHI). As such, managed IT service providers must be HIPAA-compliant. To ensure full compliance with the regulatory standards of HIPAA and the HITECH Act, Midwest IT Systems partnered with Compliancy Group and used its proprietary HIPAA compliance process and tracked progress using Compliancy Group’s HIPAA compliance software solution – The Guard.

After following Compliancy Group’s methodology, which includes a 6-stage risk analysis and remediation process, Midwest IT Systems Inc’s good faith effort to achieve HIPAA compliance was assessed by Compliancy Group’s HIPAA Experts, and the company was confirmed to be compliant with the necessary regulatory standards outlined in the HIPAA Privacy Rule, Security Rule, Breach Notification Rule, Omnibus Rule, and the HITECH Act, which saw Midwest IT Systems awarded Compiancy Group’s HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future healthcare clients that Midwest IT Systems has implemented an effective HIPAA compliance program and is committed to ensuring the privacy and security of ePHI. “Our clients can trust their IT partner not only understands HIPAA, but has verified and validated our own HIPAA Compliance through Compliancy Group. We are thankful for what Compliancy Group delivers,” said Aukes.

The post Midwest IT Systems Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

SendQuick Confirmed as HIPAA Compliant

Posted by HIPAA Journal

Compliancy Group has confirmed that the secure mobile messaging solution provider, SendQuick, has demonstrated compliance with the federally mandated standards of the Health Insurance Portability and Accountability Act (HIPAA), and has been awarded the HIPAA Seal of Compliance.

SendQuick’s mobile messaging solutions, which include IT alerts & notifications, secure remote access via multi-factor authentication, business process automation, enterprise messaging broadcast, and automated call tree systems, have been adopted by corporations in more than 40 countries, including many Fortune 500 firms in the banking, finance, insurance, manufacturing, retail, government, education, and healthcare sectors.

Providers of software and communications solutions that come into contact with protected health information are classed as business associates under HIPAA. As such, they must ensure that their products incorporate safeguards to ensure the confidentiality, integrity, and availability of PHI and that they are fully compliant with all appropriate standards and implementation specifications of the HIPAA Rules.

To ensure full compliance with HIPAA and HITECH Act standards and implementation specifications, Singapore-based SendQuick Pte Ltd partnered with Compliancy Group and used the company’s proven HIPAA compliance methodology, which includes a 6-stage HIPAA risk analysis and remediation process. SendQuick was able to track progress on its compliance journey using Compliancy Group’s proprietary software solution – The Guard.

“We take the protection of our patients’ health information very seriously,” said SendQuick CEO, Mr. JS Wong. “Achieving HIPAA compliance was a top priority for us as it shows our professionalism and integrity as a business, and we are thrilled to have partnered with Compliancy Group to make it happen.”

After following Compliancy Group’s methodology, Compliancy Group’s HIPAA compliance subject matter experts assessed SendQuick’s good faith effort to achieve HIPAA compliance and confirmed the company had satisfied its obligations under the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and HITECH Act, and awarded SendQuick the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future healthcare clients that SendQuick has achieved HIPAA compliance, has implemented an effective HIPAA compliance program to ensure continued compliance, and is committed to ensuring the privacy and security of PHI.

“The Guard was instrumental in guiding us through the compliance process, and we now have the peace of mind that comes with knowing we are doing everything we can to protect our clients and their patients’ information,” said Mr. Wong. “Our commitment to protecting patient health information and our willingness to invest in the necessary resources to achieve compliance is a testament to our dedication to our customers and their patients. Organizations and businesses take HIPAA compliance seriously and aim to work with a trusted partner like SendQuick who has achieved HIPAA compliance in order to maintain compliance with HIPAA regulations.”

The post SendQuick Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Rehmann Confirmed as HIPAA Compliant

Posted by HIPAA Journal

The Troy, MI-based fully integrated professional advisory and asset management firm, Rehmann, has recently been confirmed as being in full compliance with the federally mandated standards of the Health Insurance Portability and Accountability Act (HIPAA) and the HITECH Act.

As a service provider to healthcare organizations, Rehmann is classed as a business associate and is therefore required to comply with the HIPAA Rules. The HIPAA standards govern the privacy, security, and integrity of sensitive healthcare data called Protected Health Information (PHI) and any individually identifiable healthcare-related information. Any entity within Rehmann that is covered under HIPAA makes the firm responsible for all data that contains PHI.

To ensure full compliance with the standards and implementation specifications of the HIPAA Privacy Rule, Security Rule, Breach Notification Rule, Omnibus Rule, and the HITECH Act, Rehmann partnered with Compliancy Group.

Rehmann used Compliancy Group’s proven compliance methodology, which includes a 6-stage risk analysis and remediation process and annual audits of policies and procedures, with progress tracked using Compliancy Group’s proprietary HIPAA compliance software – The Guard. After successfully completing that process and all required 2022 audits, Rehmann was awarded the HIPAA Seal of Compliance.

Clients and associates are becoming more aware of HIPAA compliance requirements and how the regulation protects their personal information. Forward-thinking providers like Rehmann choose the Seal of Compliance to differentiate their services and demonstrate full compliance with the HIPAA Rules to current and future clients.

“The HIPAA Seal of Compliance recognition shows our associates and clients that as a firm we understand the importance of safeguarding their information,” said Stacie Kwaiser, CEO of Rehmann. “Trust is an integral value at Rehmann, and a distinguished award such as this recognizes our commitment to protecting confidential information.”

The post Rehmann Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

ADEC Innovations Healthcare, Inc. Confirmed as HIPAA Compliant

Posted by HIPAA Journal

ADEC Innovations Healthcare has recently been confirmed as being in full compliance with all appropriate provisions of the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules, and the HITECH Act.

ADEC Innovations Healthcare is a service provider to the healthcare industry, providing a range of services to reduce the administrative burden on healthcare organizations, including digital health management, revenue cycle management, clinical management, pharmacy benefits management, payer services, and back-office services. The company has extensive experience within the healthcare industry and leverages technology, data, expertise, and human ingenuity to deliver healthcare solutions that meet clients’ bespoke needs.

Providing these services often requires access to protected health information, which means ADEC Innovations Healthcare is classed as a business associate under HIPAA. ADEC Innovations Healthcare was launched in 2015 and has been HIPAA-compliant since that date; however, the company chose to partner with Compliancy Group to ensure that no aspect of the HIPAA Rules had been overlooked and used Compliancy Group’s HIPAA compliance methodology to attain the HIPAA Seal of Compliance.

Compliancy Group’s methodology has been heavily vetted against federal regulations, meets NIST requirements, and includes a 6-stage risk analysis and remediation process. Clients track their compliance journey using Compliancy Group’s proprietary software solution – The Guard – and after completion of that process, clients’ HIPAA compliance programs are assessed by Compliancy Group’s HIPAA subject matter experts and Compliance Coaches.  Clients that have successfully completed the process are awarded the HIPAA Seal of Compliance, with demonstrates they have implemented an effective HIPAA compliance program. The HIPAA Seal of Compliance also helps business associates differentiate their services and demonstrate their commitment to HIPAA compliance to current and future clients.

“ADEC Innovations Healthcare is committed to upholding the highest information security standards and attaining the HIPAA Seal of Compliance attests to this. Our healthcare clients trust us to process data safely, we take this seriously, and continuously enhance practices to meet and exceed clients’ needs and expectations,” said James Donovan, CEO, ADEC Innovations. “HIPAA compliance helped our organization to improve the management and protection of health information as regards people, processes, and technology. The Compliancy Group provided a straightforward approach to achieving the HIPAA Seal of Compliance through its GUARD system – a one-stop shop for document management, asset registration, incident management, training, audit checklist, and remediation process.”

In addition to receiving confirmation of HIPAA compliance, ADEC Innovations Healthcare also holds three ISO certifications: ISO 9001:2015: ISO and Quality Management; ISO 14001:2015: Environmental management systems; and ISO 27001:2013: Information Security Management, and is in the process of achieving HITRUST certification.

The post ADEC Innovations Healthcare, Inc. Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

OhanaPsych Confirmed as HIPAA Compliant

Posted by HIPAA Journal

OhanaPsych, a provider of psychiatric telemedicine to adults and children located in Hawaii, has recently demonstrated compliance with the federally mandated standards of the Health Insurance Portability and Accountability Act (HIPAA).

HIPAA-regulated entities must ensure they are fully compliant with the HIPAA Privacy Rule, Security Rule, Omnibus Rule, Breach Notification Rule, and the HITECH Act; however, achieving and maintaining HIPAA compliance can be a challenge for HIPAA-covered entities and their business associates, which is why many regulated entities seek assistance from a third-party compliance company.

To ensure that no provision of the HIPAA Rules was overlooked, OhanaPsych partnered with Compliancy Group and used its proven HIPAA compliance methodology and proprietary software solution – The Guard – to achieve compliance with all appropriate HIPAA standards and to implement an effective HIPAA program for maintaining compliance moving forward. After completing Compliancy Group’s six-stage implementation program, which includes a comprehensive organization-wide risk analysis and remediation process, OhanaPsych’s good faith effort toward HIPAA compliance was assessed and verified by Compliancy Group’s HIPAA subject matter experts and Compliance Coaches. The practice was confirmed as HIPAA compliant and was awarded the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future clients that OhanaPsych is committed to ensuring the privacy of their protected health information and that any personal and health information provided to the practice will be appropriately protected. The HIPAA Seal of Compliance also helps healthcare providers such as OhanaPsych to differentiate their services.

 

The post OhanaPsych Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Webinar Today: 3/23: Lessons and Examples from 2022 Breaches and HIPAA Fines

Posted by HIPAA Journal

Healthcare data breaches continued to be reported at an astonishing rate in 2022, with data breaches of 500 or more records being reported at a rate of almost two per day. Healthcare providers and other healthcare entities continue to be targeted by cybercriminals and nation-state actors, and attacks have increased in both volume and sophistication. Cyberattacks on large healthcare providers continue to occur in high numbers, but 2022 has also seen an increase in attacks on small and medium-sized healthcare organizations and business associates of HIPAA-covered entities. For healthcare organizations, it is no longer a case of if a data breach will occur but when it will happen.

When data breaches occur, the HHS’ Office for Civil Rights (OCR) investigates and HIPAA-regulated entities must be able to demonstrate they are in compliance with the HIPAA Rules. High numbers of data breaches mean OCR investigates more HIPAA-regulated entities, so it is no surprise that there were many HIPAA enforcement actions in 2022. In fact, more HIPAA fines were imposed in 2022 than in any other year since OCR was given the authority to enforce HIPAA compliance.

One interesting HIPAA enforcement trend that has continued in 2022 is an increasing number of enforcement actions against small healthcare practices. In 2022, 55% of civil monetary penalties and settlements were to resolve compliance failures at small healthcare practices, with OCR continuing to focus on HIPAA Right of Access violations and missing HIPAA documentation, especially risk assessment documentation. The data breaches and HIPAA enforcement actions

Compliancy Group is hosting a webinar where attendees can learn more about the 2022 healthcare data breaches, HIPAA enforcement trends, and the lessons that can be learned from these data breaches and HIPAA fines. During the webinar you will find out about:

  • 2022 data breach trends – How they occurred, who they affected, and the lessons that can be learned from those data breaches
  • 2022 HIPAA enforcement trends – What OCR is now focused on and what to expect in 2023
  • How to protect against data breaches and civil monetary penalties
  • Compliancy Group’s HIPAA compliance experts will be on hand and will give you the inside scoop and will provide predictions for the coming year and what you should look out for.

Compliancy Group first hosted this webinar on January 18, but due to the immense popularity of the webinar, it is being run again this month, so if you missed it the first time around you have another chance to attend.

Webinar Details:

Lessons and Examples of 2022 Breaches and Fines

Host: Compliancy Group

Speaker: Liam Degnam, Compliancy Group’s Director of Strategic Initiatives

Date: Thursday, March 23rd, 2023

Time: 11:00 a.m. PT ¦ 12:00 p.m. MT ¦ 1:00 pm CT ¦ 2:00 pm ET

Register for the webinar using the form below and remember to add the date in your diary. This is a webinar you will not want to miss!

The post Webinar Today: 3/23: Lessons and Examples from 2022 Breaches and HIPAA Fines appeared first on HIPAA Journal.

Webinar Today: 12/14/2022: Solving HIPAA Compliance (Software Demonstration)

Posted by HIPAA Journal

Achieving and maintaining compliance with the Privacy, Security, Breach Notification, and Omnibus Rules of the Health Insurance Portability and Accountability Act (HIPAA) can be a challenge for HIPAA-regulated entities.

One of the easiest approaches is to seek assistance from a third-party compliance company such as Compliancy Group. Compliancy Group was founded in 2005 by former auditors and compliance experts with the goal of simplifying compliance. The company provides coaching, assistance with risk analysis and risk management, and has developed a software solution – The Guard – that helps clients automate the majority of administrative tasks associated with a compliance program. The software solution saves clients time and eliminates all the guesswork associated with the implementation process.

On December 14, 2022, Compliancy Group is hosting a webinar to demonstrate The Guard. Attendees will learn how the software solution can help their organization achieve HIPAA compliance, mitigate risk, and avoid financial penalties. Join Compliancy Group for the Group Demo of its software solution to learn how it can help your organization using the form below:

Webinar Details:

Solving HIPAA Compliance (The Guard Software Demonstration)

Wednesday, December 14th, 2022

11:00 a.m. PT ¦ 12:00 p.m. MT ¦ 1:00 pm CT ¦ 2:00 pm ET

The post Webinar Today: 12/14/2022: Solving HIPAA Compliance (Software Demonstration) appeared first on HIPAA Journal.

Dental Oasis Confirmed as HIPAA Compliant

Posted by HIPAA Journal

Dental Oasis, (Inku & Myung Dental Inc.), an Inglewood, CA-based dentistry practice, has recently been confirmed as having implemented an effective HIPAA compliance program by Compliancy Group.

Dental practices are classified as covered entities under the Health Insurance Portability and Accountability Act (HIPAA), and as such must comply with the federally mandated standards of the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules.

HIPAA is concerned with restricting certain disclosures of protected health information (PHI) and ensuring the privacy and security of PHI. PHI is any demographic healthcare-related information that can be used to identify a patient.

Dental Oasis is committed to ensuring the privacy and security of sensitive data. To make sure that no requirement of HIPAA had been overlooked, Dental Oasis chose to follow Compliancy Group’s proprietary HIPAA compliance methodology, which includes a 6-Stage HIPAA risk analysis and remediation process, with all compliance efforts tracked using Compliancy Group’s HIPAA compliance software solution – The Guard.

After completing that process, the good faith effort of Dental Oasis to achieve HIPAA compliance was assessed by Compliancy Group’s HIPAA compliance experts and the practice was determined to be fully compliant with all appropriate provisions of the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and the HITECH Act, and Dental Oasis was awarded the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future patients of Dental Oasis, that the practice is committed to ensuring the privacy and security of PHI.

The post Dental Oasis Confirmed as HIPAA Compliant appeared first on HIPAA Journal.