Compliancy Group News

Compliancy Group Confirms Big IT has Achieved HIPAA Compliance

The Valencia, CA-based information technology and software development firm, Big IT Inc., has been confirmed as having implemented an effective HIPAA compliance program by Compliancy Group.

Big IT is a Managed Service Provider (MSP) and Managed Security Services Provider (MSSP) that offers a comprehensive range of IT services to businesses and government users across the United States. Providing IT and IT security services to clients in the healthcare industry requires access to systems that contain protected health information. Big IT is therefore classed as a business associate and must ensure compliance with the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules.

With HIPAA enforcement up 400% in recent years and a series of high-profile data breaches and multi-million-dollar settlements that have attracted national attention, the importance of HIPAA compliance for both IT service providers and their healthcare IT clients has never been more important.

To ensure the company’s compliance program was effective and no aspect of HIPAA compliance had been overlooked, Big IT partnered with Compliancy Group. Assisted by the company’s compliance coaches, and using Compliancy Group’s proprietary HIPAA compliance tracking solution, The Guard, Big IT was able to ensure compliance with all provisions of the HIPAA Rules.

After successfully completing Compliancy Group’s 6-stage HIPAA Risk analysis and remediation process, Big IT’s good faith effort toward HIPAA compliance saw the firm awarded Compliancy Group’s HIPAA Seal of Compliance.

The HIPAA Seal of Compliance helps companies differentiate their services from the competition and demonstrates to healthcare organizations a strong commitment to HIPAA compliance. “We are proud to have achieved this milestone and look forward to offering HIPAA covered entities our superior brand of Information Technology and Software Development Services,” said Big IT’s Chief Executive Officer, Timothy Cormier.

The post Compliancy Group Confirms Big IT has Achieved HIPAA Compliance appeared first on HIPAA Journal.

Webinar 03/24/20: HIPAA Tips on Working from Home, Telehealth, and Telecommuting

On March 24, 2020, Compliancy Group will be hosting a webinar to help HIPAA-covered entities and their business associates ensure they are fully compliant with HIPAA Rules when working remotely from home and handling protected health information. Compliancy Group will also be explaining the HIPAA Rules that apply to Telehealth and video conferencing.

Many healthcare professionals and business associates are using portable electronic devices to access systems in the office and are spending at least part of the week working remotely or working from home.

The SARS-CoV-2 pandemic has seen many companies take the decision to stop employees coming into work and instead are allowing them to use personal or company-owned devices to work from home to reduce the risk of contracting COVID-19.

Most companies handling protected health information (PHI) are working virtually to keep their business up and running and permit telecommuting for some members of the workforce; however, doing so and remaining in HIPAA compliance can be a challenge.

Join Compliancy Group to find out how HIPAA Rules apply when working from home and video conferencing and learn about the HIPAA telehealth rules and to find out how to properly manage your business remotely by implementing an effective compliance program.

Webinar Details:

Date:     March 24th

Time: 2:00 pm ET / 11 am PT

Register for the Webinar

The post Webinar 03/24/20: HIPAA Tips on Working from Home, Telehealth, and Telecommuting appeared first on HIPAA Journal.

Compliancy Group Helps SAR Technology Group Achieve HIPAA Compliance

SAR Technology Group has been confirmed as having achieved HIPAA compliance after successfully completing Compliancy Group’s proprietary 6-Stage HIPAA Risk Analysis and remediation process.

The regulatory standards of the Health Insurance Portability and Accountability Act ensure the confidentiality, integrity, and availability of healthcare data and protect the privacy of patients.

Vendors that serve healthcare clients must ensure they are fully compliant with HIPAA laws, but meeting all of the requirements of HIPAA can be a challenge. There is also no margin for error. Stiff fines can be imposed on business associates if they are found not to have complied with any aspect of HIPAA.

When SAR Technology Group moved into the healthcare sphere it soon became apparent that it was necessary to achieve HIPAA compliance internally. “Originally, we were planning to go through the process ourselves without external help. Soon it became evident this was not feasible as we lacked the expertise and knowledge to navigate the complex HIPAA laws,” explained SAR Technology Group. “After performing extensive research on companies providing HIPAA compliance services, and speaking to a few, we chose Compliancy Group as a partner. Their solution by far was the most comprehensive and easy to use and it was built with the end user in mind.”

Compliancy Group has developed a proprietary HIPAA compliance tracking solution called The Guard that partners can use to guide them through creating an effective HIPAA compliance program. The Guard simplifies the compliance process and ensures no aspect of HIPAA is missed. Compliancy Group’s compliance coaches are also available to help partners with their compliance efforts and answer any questions they have about any aspect of HIPAA law.

“[Compliancy Group] simplified the process and most importantly provided a solution to a problem we had in an affordable and truly achievable way,” explained SAR Technology Group. 

After implementing an effective compliance program, Compliancy Group’s compliance experts assessed SAR Technology Group’s good faith efforts to comply with HIPAA. After confirming all aspects of HIPAA laws had been satisfied, SAR Technology Group was awarded Compliancy Group’s ‘Seal of Compliance’.

The Seal of Compliance is helping SAR Technology Group to attract new customers and expand its offerings to healthcare organizations. “We have combined the services Compliancy Group offers with a full and comprehensive suite of IT services which meet and exceed HIPAA requirements, extending Compliancy Group’s offer of Compliance-as-a-Service to add IT-as-a-service.”

The post Compliancy Group Helps SAR Technology Group Achieve HIPAA Compliance appeared first on HIPAA Journal.

Webinar 03/18/20: Discover the Untold Benefits of HIPAA Compliance

If you are a HIPAA-covered entity, current business associate, or you are looking to start providing services to healthcare organizations, you will need to ensure that your business is fully compliant with Health Insurance Portability and Accountability Act Rules.

In the event of a compliance audit or data breach investigation you will need to demonstrate that you have implemented an effective compliance program and are compliant with the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules. However, there are many more benefits to HIPAA compliance than simply being able to pass a compliance audit.

On March 18, 2020, HIPAA Journal sponsor, Compliancy Group, will be hosting a free webinar to explain the full benefits of HIPAA compliance and the lasting positive impact HIPAA compliance can have on your organization, from protecting your reputation to differentiating your business from the competition.

During the webinar you will be provided with tips on how your organization can start leveraging the true benefits of HIPAA compliance and by the end of the session you will have learned how you can start using compliance to grow your business!

Webinar Details:

Date: Wednesday, March 18, 2020

Time: 2:00 pm ET / 11:oo am PT

Register for the Webinar

About Compliancy Group

Compliancy Group is the industry leader in HIPAA compliance. The company offers an affordable service to help your business meet all its obligations under the HIPAA Rules.

The company was founded in 2005 by former compliance auditors who found there were few options available to small-to medium-sized businesses to effectively address compliance without having to use incomplete solutions or hire expensive lawyers.

Compliance Group developed a software solution, The Guard, that steers businesses through the compliance process. Compliancy Group is the only compliance company that provides guided support to simplify the compliance process.

In the event of a compliance audit, help will be provided to ensure it runs as smoothly as possible. No Compliancy Group client has ever failed a compliance audit.

The post Webinar 03/18/20: Discover the Untold Benefits of HIPAA Compliance appeared first on HIPAA Journal.

Center for Counseling & Family Relationships Confirmed as HIPAA Compliant

Center for Counseling & Family Relationships (CCFAM), a large group counseling private practice based in Fort Worth, TX, has announced the company has demonstrated compliance with Health Insurance Portability and Accountability Act (HIPAA) Rules after completing Compliancy Group’s 6-Stage HIPAA risk analysis and remediation process.

Using Compliancy Group’s proprietary HIPAA compliance tracking solution, The Guard, and assisted by its compliance coaches, CCFAM has demonstrated its policies and procedures are in line with HIPAA and the company has implemented an effective HIPAA compliance program.

CCFAM was founded in 2007 with just one counselor and office staff member and has now grown into a large practice offering more than 1,000 sessions a month. Privacy and confidentiality are critical to CCFAM and the children, teenagers, and adults the company serves.

CCFAM already complies with Texas licensure board rules and every effort was made to comply with HIPAA, but CCFAM owner, Dr. Rhonda Johnson, recognized the fact that staff HIPAA training had not changed much in the past 5 years, even though the company had grown considerably over the years and was now a large group private practice of administrative staff and counselors with many specialties.

“Along with being the owner of Center for Counseling & Family Relationships, I am also the owner of CCFAM Training, which provides CEUs for mental health professionals. I recognized the need in my field for a Telehealth, HIPAA, and PCI Compliance continuing education training,” explained Dr. Johnson. “As I began to develop and prepare the training, I was introduced to a Compliancy Group video that I used during the CEU training I provided. I reached out to Compliancy Group to find out what made them unique and different than the service I had been using.”

What CCFAM needed was a service that would help the practice ensure continued compliance with HIPAA Rules and would provide a more intensive, hands on approach to that would ensure continued compliance.

“What made the decision for me was hearing the heart behind how Compliancy Group began, their desire to provide effective training for small business practices like mine, their step by step process, and coaching throughout the process to earn our HIPAA Compliance Seal with Compliancy Group,” said Dr. Johnson. “I can without hesitation state that the process was more thorough and in depth across every aspect of HIPAA than any other HIPAA assistance service on the market.”

Successful completion of the 6-stage HIPAA Risk Analysis and remediation process has seen CCFAM awarded Compliancy’ Group’s HIPAA Seal of Compliance. The HIPAA Seal of Compliance demonstrates CCFAM’s good faith effort toward HIPAA compliance and that the company has implemented an effective HIPAA compliance program.

The Seal of Compliance demonstrates to current and future clients that CCFAM is committed to ensuring patient privacy and that the company has implemented appropriate safeguards to keep patient information protected.

The post Center for Counseling & Family Relationships Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Dr. Huddle Confirmed as HIPAA Compliant by Compliancy Group

Dr. Huddle has announced it has completed Compliancy Group’s 6-Stage HIPAA Risk Analysis and remediation process and has been confirmed as in compliance with the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules.

Dr. Huddle is a Cupertino, CA-based startup that has developed a gateway that connects general dentists with specialists across North America. The gateway, the first of its kind in America, brings together the many different dental specialties under one roof and allows patient-centered treatment plans to be developed faster and more efficiently and for the provision of dental care to be optimized.

Through the platform, general dentists can find specialists capable of providing treatment to their patients, radiographs and patient notes can easily be shared, appointments can be tracked, insurance payments automated, and referrals can be handled smoothly by specialists.

Dr. Huddle is classed as a business associate under HIPAA and is required to comply with the HIPAA Rules. To ensure compliance with all aspects of HIPAA and to demonstrate to potential members that PHI will be secured at all times, Dr. Huddle teamed up with Compliancy Group.

Assisted by Compliancy Group’s compliance coaches, and using the company’s proprietary HIPAA compliance tracking software, The Guard, Dr. Huddle ensured that the company was in compliance with HIPAA. The company’s good faith effort toward HIPAA compliance was assessed by Compliancy Group and the company was confirmed as having implemented an effective HIPAA compliance program and was awarded the Compliancy Group HIPAA Seal of Compliance.

“Compliancy Group made the process of being HIPAA compliant a breeze. HIPAA is extremely important to our company because we are dealing with ePHI on a daily basis, and every professional is able to share patient information with other professionals.”

The post Dr. Huddle Confirmed as HIPAA Compliant by Compliancy Group appeared first on HIPAA Journal.

Webinar: Lessons and Examples from 2019’s HIPAA Breaches and Fines

2019 was another record-breaking year for healthcare industry data breaches. A new record was set in 2018 with 371 healthcare data breaches of 500 or more records reported to the Department of Health and Human Services’ Office for Civil Rights. That record was truly smashed in 2019 with an astonishing 492 breaches of 500 or more records reported.

2019 was a busy year for the HHS’ Office for Civil Rights. In 2019, OCR levied more than $15 million in fines to resolve violations of the HIPAA Privacy Rule, HIPAA Security Rule, and HIPAA Breach Notification Rule.

The fines were issued for a variety of compliance failures, including the failure to conduct a comprehensive, organization-wide risk analysis, failures to enter into business associate agreements with vendors, access control failures, disclosure of PHI on social media, breach notification delays and the failure to comply with the HIPAA Right of Access.

The reasons for the financial penalties may have been varied, but there was one common denominator. The financial penalties could have easily been avoided. It may not be possible to prevent all data breaches, but it is possible to avoid OCR financial penalties.

On February 19, 2020, HIPAA Journal sponsor, Compliancy Group, will be reviewing the 2019 healthcare data breaches and the financial penalties that OCR imposed on healthcare organizations and business associates of HIPAA-covered entities.

In the webinar, Compliancy Group will explain how financial penalties and the associated negative publicity can easily be avoided by implementing a simple compliance plan.

Don’t miss out on this opportunity as Compliancy Group’s HIPAA compliance experts will be giving actionable tips that you can apply to start protecting your business immediately!

Webinar Details:

Date: February 19, 2020

Time: 2PM ET / 11AM PT

Click here to register for the webinar

 

The post Webinar: Lessons and Examples from 2019’s HIPAA Breaches and Fines appeared first on HIPAA Journal.

Lessons and Examples from 2019 HIPAA Breaches and Fines

It has been another busy year of HIPAA enforcement for the Department of Health and Human Services’ (HHS) Office for Civil Rights.

So far in 2019 there have been 9 financial penalties imposed on HIPAA covered entities and business associates to resolve compliance failures. In total, $12,209,000 has been paid as a result of HIPAA violations and more financial penalties could be announced before the year is out.

2019 has seen OCR continue to impose penalties for compliance failures related to risk analyses, risk management, business associate agreements, access controls, breach notifications, and impermissible disclosures of protected health information, as has been the case over the past few years.

2019 also saw OCR launch a new HIPAA compliance enforcement initiative. Under the HIPAA Right of Access initiative, OCR has issued two $85,000 financial penalties for failures to provide patients with copies of their medical records in a reasonable time frame without being overcharged.

OCR is not penalizing healthcare organizations and business associates for data breaches, as breaches can occur even when an organization is fully compliant. The penalties are issued because of the lack of an effective HIPAA compliance program. If those 9 entities had an effective compliance plan in place, a sizable financial penalty and all the negative publicity would have been avoided.

On January 22, HIPAA Journal sponsor, Compliancy Group, will be hosting a webinar in which OCR’s HIPAA compliance enforcement actions in 2019 will be reviewed and the changing enforcement priorities of OCR will be discussed.

Compliancy Group will also explain how straightforward it is to implement and maintain an effective HIPAA compliance plan and its compliance coaches will be providing actionable tips to help you immediately start protecting your business.

Webinar: Lessons and Examples from 2019’s HIPAA Breaches and Fines

Date: January 22nd, 2020 @ 2:00 pm ET / 11 am PT

Register Here

The post Lessons and Examples from 2019 HIPAA Breaches and Fines appeared first on HIPAA Journal.

Webinar Today: Solving the HIPAA Problem: Demonstration of Compliancy Group’s Simplified HIPAA Compliance Process

Meeting all requirements of the Health Insurance Portability and Accountability Act (HIPAA) Privacy, Security, Omnibus, and Breach Notification Rules can be a major challenge.

Many healthcare organizations have established a compliance program and believed they were compliant, only to discover during a HIPAA audit or compliance review that they have failed to comply with one or more HIPAA provisions. Those mistakes can prove to be very costly.

Compliance failures can easily lead to a data breach or could result in a complaint being filed with the Department of Health and Human Services’ Office for Civil Rights (OCR), the primary enforcer of HIPAA compliance.

OCR investigates complaints and data breaches to determine whether HIPAA Rules have been violated and conducts compliance audits to assess whether HIPAA covered entities and business associates of covered entities are complying with all aspects of HIPAA Rules.

Enforcement of compliance has stepped up in recent years. In 2018, OCR imposed $28,683,400 in financial penalties on covered entities and business associates in 11 enforcement actions and 10 compliance investigations resulted in financial penalties in 2019.

Solving HIPAA Compliance Issues

Compliancy Group understands the importance of HIPAA compliance and the difficulties HIPAA-covered entities and their business associates encounter when trying to implement and maintain an effective compliance program.

To simplify the process of HIPAA compliance, Compliancy Group has developed a software solution that guides entities through the compliance process. The software solution, The Guard, simplifies everything your organization needs to achieve HIPAA compliance, mitigate risk, and avoid fines.

On March 25, 2020, Compliancy Group will be running a group demonstration of The Guard and its simplified HIPAA compliance process.

Join Compliancy Group for the demonstration and find out how their compliance coaches help covered entities and business associates achieve compliance and satisfy all federal regulations.

Solving the HIPAA Problem: Group Demonstration of Compliancy Group’s Simplified Process

Date: March 25th @ 2:00 pm ET / 11 am PT

Register Here

The post Webinar Today: Solving the HIPAA Problem: Demonstration of Compliancy Group’s Simplified HIPAA Compliance Process appeared first on HIPAA Journal.