Compliancy Group News

Compliancy Group Confirms Integration Link, LLC is in Compliance with HIPAA and the HITECH Act

Integration Link, LLC, a provider of cybersecurity consultancy services and virtual Chief Information Security Officers to small to large enterprises, has completed Compliancy Group’s 6-Stage HIPAA Risk Analysis and remediation process and has demonstrated full compliance with all provisions of the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules and the HITECH Act.

Finding suitable candidates to fill the position of Chief Information Security Officer can be a major challenge for healthcare organizations. There is a nationwide shortage of sufficiently skilled individuals and many positions remain vacant. Some enterprises simply cannot afford to hire a fulltime Chief Information Security Officer. Integration Link addresses the gap by providing virtual Chief Information Security Officers to guide organizations through the process of reducing risks to protected health information and information assets.

Naturally, such a service requires staff at Integration Link to be provided with access to systems that contain protected health information, which makes the company a HIPAA business associate.

“Integration Link is committed to ensure our healthcare provider, health plan, healthcare clearinghouse, and HIPAA business associate customers implement multiple safeguards to protect sensitive personal and health information,” explained Integration Link.  “That breeds a vast amount of accountability and responsibility for us all.”

To help differentiate its services and provide reassurances to prospective and existing clients of the staff’s knowledge of HIPAA and commitment to compliance, the company partnered with Compliancy Group. Using Compliancy Group’s proprietary software, The Guard, and assisted by its compliance coaches, Integration Link has demonstrated it has implemented an effective HIPAA compliance program covering all aspects of HIPAA and HITECH Act provisions.

The successful completion of Compliancy Group’s HIPAA program has seen Integration Link awarded Compliancy Group’s ‘HIPAA Seal of Compliance.’ The Seal of Compliance demonstrates Integration Link has implemented an effective HIPAA compliance program and is committed to ensuring the privacy and security of all HIPAA-covered data stored on systems accessible to its staff.

The post Compliancy Group Confirms Integration Link, LLC is in Compliance with HIPAA and the HITECH Act appeared first on HIPAA Journal.

Webinar: Social Media and HIPAA Compliance: Protecting Your Practice in the Digital Age

Social media is a potential minefield for HIPAA violations. One impulsive response to an online review could violate the privacy of a patient, breach HIPAA Rules, and leave and the practice at risk of a significant HIPAA violation penalty.

In the digital age, healthcare providers have to deal with a whole new set of privacy concerns. Social media cannot be avoided, so it is important to understand what must be done to protect the business.

“Proactively generating reviews and also responding to them effectively, in a timely manner is essential to marketing your practice. However, without proper precaution, health care providers could face serious privacy breaches and even HIPAA violations,” said Liam.

In the webinar, Liam will explain how healthcare providers can respond to reviews in a manner that minimizes legal risk, while remaining fully compliant with HIPAA regulations.

Register for our upcoming webinar to find out how to manage your online reputation–without risking your practice.

Webinar Details:

Date:    Tuesday, September 17th

Time:    2:00 pm ET/11:00 am PT

Register Here

The post Webinar: Social Media and HIPAA Compliance: Protecting Your Practice in the Digital Age appeared first on HIPAA Journal.

CTI Technology Confirmed as HIPAA Compliant

CTI Technology, an Elgin, IL-based managed IT service provider, has demonstrated compliance with the Health Insurance Portability and Accountability Act (HIPAA) Rules using Compliancy Group’s proprietary HIPAA methodology and compliance tracking solution, The Guard.

Any company that provides a product or service to healthcare organizations that requires access to systems containing protected health information (PHI) is classed as a HIPAA business associate. Following the introduction of the HIPAA Omnibus Final Rule, all business associates of HIPAA-covered entities must comply with HIPAA Rules or face stiff financial penalties for noncompliance.

CTI Technology believes compliance with HIPAA Rules is essential for protecting patient privacy, improving data security, and reducing fraudulent activity. The company educates its clients on the measures required to ensure compliance with the HIPAA Security Rule and how, through compliance, cyberattacks can be thwarted and regulatory fines avoided.

CTI Technology has recently completed Compliancy Group’s 6-stage risk analysis and remediation program and has demonstrated compliance with the regulatory standards of the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and HITECH Act.

After completing the program and demonstrating HIPAA compliance, the company was awarded Compliancy Group’s “HIPAA Seal of Compliance”. CTI Technology is one of the only tech companies in the North-western region of Chicago to ensure that all employees have received the required training and are fully aware of their responsibilities under HIPAA and the importance of the privacy and security standards and implementation specifications of HIPAA.

The HIPAA Seal of Compliance helps CTI Technology differentiate its services from its competitors and demonstrate to prospective healthcare clients that the company is fully complaint with HIPAA regulations.

The post CTI Technology Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

IT Service Provider Choose Networks Achieves HIPAA Compliance with Compliancy Group

The Wichita, KS-based IT service provider, Choose Networks, has achieved HIPAA compliance with Compliancy Group.

Choose Networks was established in 2001 to provide small to medium sized businesses with enterprise-grade IT support. The company now employs over 35 people and provides IT support services to a wide range of companies, including many in the healthcare industry.

As an IT service provider, Choose Networks requires access to systems containing protected health information. As such, the company is considered a HIPAA business associate and is required to comply with HIPAA Rules.

In order to ensure that all requirements of HIPAA have been met and to demonstrate the company follows the same policies, procedures, and administrative practices as its healthcare clients, Choose Networks partnered with Compliancy Group and completed its 6-Stage HIPAA risk analysis and remediation process.

“Choose Networks delivers an excellent customer experience, and this doesn’t stop with technical guidance and support. It is paramount to do everything it takes to protect our customers,” said Lindsay Smith, Vigilance Coordinator at Choose Networks. “For this reason, we requested assistance from Compliancy Group to audit our business to ensure we understand and are upholding HIPAA compliancy regulations.”

Using Compliancy Group’s proprietary HIPAA methodology and its compliance software, The Guard, Choose Networks demonstrated compliance with all aspects of HIPAA Rules and has been awarded Compliancy Group’s HIPAA Seal of Compliance.

The Seal of Compliance confirms Choose Networks has met its requirements and has implemented an ongoing program to ensure continued compliance with the HIPAA Privacy, Security, Breach Notification Rules and the HITECH Act.

The company is using Compliancy Group’s Seal of Compliance to differentiate its services from the competition and demonstrate to prospective clients that the company is fully committed to HIPAA compliance.

The post IT Service Provider Choose Networks Achieves HIPAA Compliance with Compliancy Group appeared first on HIPAA Journal.

Webinar: Aug 21, 2019: Why Your Organization Needs More Than Just Training If You Want To Be HIPAA Compliant?

On August 21, 2019. HIPAA Journal Sponsor, Compliancy Group, will be hosting a webinar entitled “Why your organization needs more than just training if you want to be HIPAA compliant?”

If you are a HIPAA covered entity or business associate, compliance with the Health Insurance Portability and Accountability Act is mandatory. All employees must be trained on HIPAA and should understand how the legislation applies to their role in the organization.

With the workforce trained on privacy and security and aware of the allowable uses and disclosures permitted by the HIPAA Privacy Rule, employees will be able to complete their work duties in full compliance with HIPAA and avoid financial penalties.

HIPAA compliance requires an ongoing commitment to achieve the required standards for privacy and security and ensure those standards are maintained.

To find out more about what’s entailed, Compliancy Group is holding a webinar.

During this webinar, Compliancy Group President and CEO Marc Haskelson will explain:

  • How to meet all federal requirements for effective HIPAA training
  • How your organization can avoid breaches and fines
  • What you can you be doing right now to protect your organization
  • How to keep your name off the HHS ‘Wall of Shame’
  • How your patients feel about HIPAA and why this is important for your business.

Tune into this exclusive webinar to learn how you can become HIPAA compliant. You can sign up for this and future webinars on the following link: https://compliancy-group.com/webinar/

Date: Wednesday, August 21, 2019

Start Time: 2:00 pm ET/11:00 am PT

The post Webinar: Aug 21, 2019: Why Your Organization Needs More Than Just Training If You Want To Be HIPAA Compliant? appeared first on HIPAA Journal.

Direct Connect Computer Systems Inc. Recognized as HIPAA Compliant

The Cleveland, OH-based technology solution provider, Direct Connect Computer Systems, Inc., has demonstrated the company is fully compliant with Health Insurance Portability and Accountability Act (HIPAA) Rules.

Companies that provide technology solutions and services to healthcare clients that require contact with electronic protected health information (ePHI) are classed as ‘business associates’ under HIPAA.

Business associates of HIPAA covered entities must ensure they are fully compliant with the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules, and must ensure the confidentiality, integrity, and availability of ePHI at all times. Business associates face substantial fines if they are discovered not to be compliant with HIPAA Rules.

In order to start providing products and services to healthcare organizations, companies must be able to provide reasonable assurances that they are fully compliant with HIPAA Rules. To help provide those assurances and demonstrate the company’s commitment to privacy and security, Direct Connect Computer Systems, Inc., partnered with Compliancy Group and completed its Six Stage Risk Analysis and remediation process.

Using Compliancy Group’s proprietary software, The Guard, and assisted by Compliancy Group Compliance Coaches, Direct Connect Computer Systems successfully completed the program and was awarded Compliancy Group’s HIPAA Seal of Compliance.

The HIPAA Seal of Compliance recognizes Direct Connect’s good faith efforts to comply with all HIPAA and HITECH Act requirements and confirms the company has met its regulatory obligations as a HIPAA business associate.

The post Direct Connect Computer Systems Inc. Recognized as HIPAA Compliant appeared first on HIPAA Journal.

Compliancy Group Appoints New HIPAA Attorney

Compliancy Group has announced the appointment of a new, experienced healthcare attorney and legal researcher who has been tasked with helping to simplify the complex requirements of the Health Insurance Portability and Accountability Act (HIPAA) to make them more understandable to the company’s clients and the public at large.

Daniel Lebovic, a graduate of Emory University School of Law, will join Compliancy Group’s Content Management Team. Lebovic has a background in healthcare law and translating complex legal documents into written content that can be easily understood by individuals without a legal background.

Much has changed in healthcare over the last 20 years since HIPAA was enacted. Ensuring continued compliance with HIPAA as work practices change and new technology is introduced can be a major challenge, one that requires a thorough understanding of the nuances of HIPAA.

HIPAA contains a set of standards for healthcare organizations of all sizes, from single doctor practices to the nation’s largest health systems and health insurers but it does not say how those standards should be achieved and in many cases requirements are unclear.

For example, the HIPAA Security Rule requires covered entities to maintain “reasonable and appropriate” administrative, technical, and physical safeguards for protecting e-PHI. Risk must also be reduced to a “reasonable and appropriate” level. Determining what is “reasonable and appropriate” can be difficult. Unfortunately, the consequences of a misjudgment can be severe.

This is where Lebovic’s expertise will be invaluable. Lebovic has been tasked with creating educational content for healthcare organizations that breaks down the complexities of HIPAA and makes it clear what healthcare organizations must do to comply.

“HIPAA regulation was not designed with an eye toward being comprehensive to the average person. With my new role I hope to breakdown what the regulations say into actionable advice to help the healthcare market better understand and adhere to HIPAA,” said Lebovic.

The post Compliancy Group Appoints New HIPAA Attorney appeared first on HIPAA Journal.

Qmetis Inc. Demonstrates HIPAA Compliant Status by Completing Compliancy Group HIPAA Risk Analysis Program

The NY-based healthcare technology company Qmetis has successfully completed Compliancy Group’s 6-State HIPAA Risk Analysis and remediation process and has been confirmed as being in compliance with Health Insurance Portability and Accountability Act (HIPAA) Rules for HIPAA business associates.

Qmetis develops web-based interactive quality assessment and quality assurance decision-support tools for healthcare professionals. The tools help hospitals and medical centers, and physician’s offices consistently deliver evidence-based care to patients. The tools are used in real-time at a patient’s bedside and support treatment decisions. Healthcare organizations that have adopted the tools have been able to improve outcomes and reduce costs.

The tools developed by Qmetis interact with patient health information, so the company is considered a business associate under HIPAA and is required to comply with HIPAA Rules.

The company had already developed a HIPAA compliance program, but as part of its continuing commitment to compliance, the company partnered with the Compliancy Group and used The Guard software to complete it’s 6-stage Risk Analysis and remediation process.

Assisted by Compliancy Group’s HIPAA compliance coaches, Qmetis was guided through the compliance process by Compliancy Group’s proprietary software – The Guard. The software and the implementation plan have been vetted against the letter of the law and have been confirmed as meeting federal NIST requirements.

Completion of the implementation plan has confirmed that Qmetis is in compliance with HITECH Act requirements and all business associate provisions of the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules.

Successful completion of the implementation plan and the good faith efforts of Qmetis to comply with federal regulations has seen the company issued with Compliancy Group’s HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to healthcare organizations that a company is committed to meeting and exceeding federal standards for privacy and security and confirms the company takes its compliance obligations seriously and is committed to protecting the privacy of its clients’ data.

The post Qmetis Inc. Demonstrates HIPAA Compliant Status by Completing Compliancy Group HIPAA Risk Analysis Program appeared first on HIPAA Journal.

Computer Doc Achieves HIPAA Compliance with Compliancy Group

Compliancy Group has announced that the Indian Trail, NC-based IT firm Computer Doc has completed the initial phase of its HIPAA compliance journey and has demonstrated compliance with the HIPAA Privacy, Security, Breach Notification, Omnibus Rules and the requirements of the HITECH Act.

Since 1997, Computer Doc has been providing IT support and consultancy services to businesses in and around Charlotte, NC. The firm focuses on providing IT support to small to medium sized businesses to help them increase productivity, improve efficiency, and boost profitability through the intelligent use of IT.

In order to reassure healthcare companies that the firm is aware of the requirements of HIPAA and is committed to providing a HIPAA-compliant IT support service, Computer Doc signed up with the Compliancy Group and was guided through the compliance process.

“With HIPAA violation fine enforcement up 400% in recent years and series of high-profile breaches and multi-million dollar settlements that drew national attention, the importance of HIPAA compliance for both IT service providers (BAs) and their healthcare IT clients (CEs) has never been more urgent,” explained Compliancy Group.

Using the Compliancy Group’s proprietary compliance tracking software, The Guard, and assisted by Compliancy Group coaches, Computer Doc completed the 6-stage implementation program and demonstrated compliance with all relevant provisions of HIPAA Rules.

“Achieving compliance with HIPAA has improved our business and opened the doors to many medical practices that we could not help before,” explained Computer Doc.

After demonstrating compliance with HIPAA, Computer Doc is entitled to display Compliancy’ Group’s HIPAA Seal of Compliance. The Seal of Compliance demonstrates to all HIPAA-covered entities that the firm is fully compliant with HIPAA regulations and patient’s ePHI is secure.

The post Computer Doc Achieves HIPAA Compliance with Compliancy Group appeared first on HIPAA Journal.