Compliancy Group News

Webinar: Aug 17, 2022: Do I Need to be HIPAA Compliant?

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards to protect sensitive patient health information and to prevent that information from being disclosed without an individual’s knowledge or consent. HIPAA applies to healthcare providers, health plans, and healthcare clearinghouses, which are classed as HIPAA-covered entities.

There is a misconception that only HIPAA-covered entities need to ensure they are compliant with the HIPAA Privacy, Security, Breach Notification, and Omnibus Rules; however, HIPAA also applies to business associates of HIPAA-covered entities. A business associate is any third party that provides products or services to HIPAA-covered entities that involves contact with protected health information (PHI) in any form.

Achieving and maintaining HIPAA compliance is vital for all HIPAA-covered entities and business associates. The HHS’ Office for Civil Rights and state Attorneys General have the authority to impose financial penalties and other sanctions if non-compliance with the HIPAA Rules is discovered, and many organizations have discovered to their cost that compliance with the HIPAA Rules is not optional.

If you work in healthcare in any capacity, it is almost certain that you need to be HIPAA compliant. If you are in any doubt, Compliancy Group is hosting a webinar on August 17, 2022, to answer the question, do I need to be HIPAA compliant?

Do I Need to be HIPAA Compliant?

August 17th @ 2:00 pm ET ¦ 11:00 am PT

Host: Compliancy Group

[contact-form-7]

The post Webinar: Aug 17, 2022: Do I Need to be HIPAA Compliant? appeared first on HIPAA Journal.

Koshland Pharm: Custom Compounding Pharmacy Confirmed as HIPAA Compliant

Koshland Pharm: Custom Compounding Pharmacy has been confirmed as being fully compliant with the federally mandated standards of the Health Insurance Portability and Accountability Act (HIPAA).

Koshland Pharm is a San Francisco, California-based PCAB-accredited compounding pharmacy that makes customized prescription medications. The company delivers exceptional quality products with a personalized experience for patients. Koshland Pharm transmits protected health information electronically, and is therefore classed as a covered entity under HIPAA and is required to comply with the HIPAA Rules.

HIPAA is made up of a set of regulatory standards governing the security, privacy, and integrity of sensitive health care data called protected health information (PHI), which is any demographic healthcare-related information that can be used to identify a patient. Koshland Pharm chose Compliancy Group as its HIPAA compliance partner and used the company’s proprietary HIPAA methodology involving The Guard compliance tracking software.

“Because of our commitment to patient health, we chose to invest in the Guard’s HIPAA training system to make sure we are up-to-date with the absolute best practices in guaranteeing the privacy of our patients’ health information,” explained Peter Koshland, CEO, and Founder of Koshland Pharm.

After completing Compliancy Group’s Six Stage HIPAA Implementation Program, Koshland Pharm was assessed by Compliancy Group’s HIPAA subject matter experts and was confirmed as having achieved compliance with the regulatory standards of the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and the HITECH Act, and was awarded the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance is issued to organizations that have implemented an effective HIPAA compliance program through the use of The Guard, and it demonstrates to current and future patients that an organization is fully compliant with the HIPAA Rules and is committed to ensuring the privacy and security of all PHI.

The post Koshland Pharm: Custom Compounding Pharmacy Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Eric G Piasick D.M.D Confirmed as HIPAA Compliant

Eric G Piasick D.M.D. has used Compliancy Group’s proprietary HIPAA methodology and has been confirmed as compliant with the HIPAA Rules and the HITECH Act.

Dental practices are covered entities under the Health Insurance Portability and Accountability Act and are required to achieve compliance with the regulatory standards of the HIPAA Privacy, Security, Omnibus, and Breach Notification Rules and the HITECH Act. Achieving and maintaining compliance can be a challenge, which is why many practices seek assistance from third-party compliance specialists.

Compliance Group is one such vendor that offers an easy-to-follow HIPAA compliance methodology and clients track progress on their compliance journeys using the company’s proprietary software solution – the Guard. “We, as a private practice, chose Compliancy Group and The Guard to take us through HIPAA compliance,” said Piasick. “It has benefited our office by keeping all of our staff aware of how secure things need to be. Being HIPAA compliant is a priority of ours because it is a priority for our patients and we as an office strive to keep our patients and their health history safe and secure.”

Compliancy Group’s HIPAA compliance program includes a 6-Stage HIPAA risk analysis and remediation process. After the successful completion of that process, Eric G Piasick D.M.D. underwent a HIPAA compliance assessment and was confirmed as having met the regulatory standards of the HIPAA Rules and HITECH and the practice was awarded the HIPAA Seal of Compliance. The HIPAA Seal of Compliance demonstrates to current and future patients that the practice is committed to ensuring the privacy and security of protected health information and has implemented an effective HIPAA compliance program to ensure continued compliance.

“Our office is proud to have completed advanced HIPAA training to help further protect our patients and learn about the importance of patient privacy to help achieve high-quality care. As our family practice continues to grow, we want to ensure the practice and patients have the best experience by having technology but also protecting patients’ health information to a high degree. We look forward to serving our patients and community with the highest oral health care possible,” said Piasick.

The post Eric G Piasick D.M.D Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

All Trans Software Confirmed as HIPAA Compliant

All Trans Software Inc, a Ramsey, MN-based provider of Non-Emergency Medical Transportation (NEMT) software solutions to transportation vendors, has been confirmed as having implemented an effective HIPAA compliance program by Compliancy Group.

Vendors of software solutions that collect, process, store, or transmit protected health information (PHI) are classed as business associates under the Health Insurance Portability and Accountability Act and are required to comply with certain provisions of the HIPAA Rules, including implementing safeguards to ensure the confidentiality, integrity, and availability of PHI and controls to prevent unauthorized access to PHI.

As a provider of NEMT software solutions, All Trans Software solutions come into contact with PHI and the company is therefore required to comply with the HIPAA Rules. To ensure the company and its software solutions met and exceeded the regulatory standards of the HIPAA Rules, All Trans Software partnered with Compliancy Group.

Compliancy Group has developed an easy-to-follow HIPAA compliance methodology that HIPAA-covered entities and business associates can use to ensure they are fully compliant with all appropriate provisions of the HIPAA Rules. Progress along the compliance journey can be tracked using Compliancy Group’s proprietary software solution – The Guard.

All Trans Software used The Guard and completed Compliancy Group’s HIPAA compliance process, which includes a 6-stage risk analysis and remediation program. After successfully completing that process, Compliancy Group confirmed All Trans Software’s good faith effort toward HIPAA compliance and awarded the company the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates that All Trans Software has achieved compliance with the HIPAA Rules and has an effective HIPAA compliance program to ensure continued compliance.

The post All Trans Software Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

CalystaPro EMR Verified as HIPAA Compliant

Compliancy Group has confirmed that CalystaPro EMR is compliant with the HIPAA Rules and the HITECH Act.

CalystaPro EMR is an all-in-one aesthetic-focused EMR system developed by medical aesthetic professionals. The solution includes practice schedules, zoom teleconference, premade aesthetic note templates, digital consents, online invoicing, two-way SMS, e-prescription, and many other features.

Naturally, all EMR system vendors are classed as business associates under HIPAA as their solutions are used to store electronic protected health information (ePHI). It is therefore vital for safeguards to be implemented to ensure the confidentiality, integrity, and availability of ePHI, and for all processes and practices to be fully compliant with the HIPAA Rules.

To ensure HIPAA compliance, CalystaPro EMR partnered with Compliancy Group and used its proven HIPAA methodology to meet all standards governing the security, privacy, and integrity of sensitive healthcare data. CalystaPro EMR tracked progress on the journey to compliance using Compliancy Group’s proprietary software solution, The Guard, and after completing a 6-stage risk analysis and remediation program, CalystaPro EMR was assessed by Compliancy Group’s HIPAA Subject matter experts.

CalystaPro EMR successfully demonstrated it had implemented an effective HIPAA compliance program and was fully compliant with all appropriate provisions of the HIPAA Privacy Rule, Security Rule, Breach Notification Rule, Omnibus Rule, and the HITECH Act, and was awarded the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future clients that a company has implemented an effective compliance program and is committed to ensuring the privacy and security of all healthcare data. “Clients can feel safe knowing that their information is properly protected as we strive to provide the most-well rounded Aesthetic-focused EMR,” said a spokesperson for CalystaPro EMR.

The post CalystaPro EMR Verified as HIPAA Compliant appeared first on HIPAA Journal.

Podium Confirmed as HIPAA Compliant

Podium, a Lehi, UT-based Software-as-a-Service company that provides business text messaging solutions for local businesses, has achieved HIPAA compliance with Compliancy Group.

Podium is redefining the way patients interact with their local healthcare businesses. Through Podium’s robust business text messaging platform, healthcare organizations can text patient leads and current patients, leverage bulk texting for providing important updates, collect google reviews, collect NPS feedback, and even collect payment. The platform is currently used by more than 100,000 businesses.

When vendors provide products or services to healthcare organizations that require contact with protected health information (PHI), vendors are classed as business associates under the Health Insurance Portability and Accountability Act and are required to comply with certain provisions of the HIPAA Rules. Due to the nature of the information collected and transmitted through the Podium text messaging platform, HIPAA compliance is essential. To ensure the company and platform were fully compliant with the HIPAA Rules, Podium partnered with Compliancy Group.

Podium used Compliancy Group’s HIPAA compliance methodology and tracked progress on their compliance journey through Compliancy Group’s proprietary HIPAA software solution, The Guard. After completing that process, which includes a 6-stage risk analysis and remediation process, Podium’s good faith effort toward HIPAA compliance was assessed by Compliancy Group’s HIPAA subject matter experts, and the company was awarded the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future healthcare clients that Podium has completed Compliancy Group’s implementation program and has met all of the regulatory standards of the HIPAA Privacy Rule, Security Rule, Breach Notification Rule, Omnibus Rule, and the HITECH Act that apply to HIPAA business associates, and demonstrated the company had implemented an effective ongoing program to ensure continued compliance with the HIPAA Rules.

The post Podium Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

Webinar Today: July 20, 2022: Compliance vs. Security: Why you Need Both to be HIPAA Compliant

Healthcare providers, health plans, healthcare clearinghouses, and business associates of those entities that come into contact with protected health information (PHI) are required to ensure policies, processes, and people are compliant with the Rules of the Health Insurance Portability and Accountability Act (HIPAA).

Ensuring you have a good security posture is an important part of HIPAA compliance. The HIPAA Security Rule requires HIPAA-regulated entities to have appropriate safeguards in place to ensure the confidentiality, integrity, and availability of ePHI, and to manage risks to protected health information and reduce them to a low and acceptable level.

Ensuring you have a good security posture has never been more important. Cyber threat actors have stepped up their attacks on the healthcare industry and data breaches are occurring at record levels. Further, following the ‘Safe Harbor’ update to the HITECH Act, if you are able to demonstrate you have implemented recognized security practices, you will be protected against fines, sanctions, and extensive audits and investigations by the HHS’ Office for Civil Rights.

To help you on your compliance journey and with your security efforts, Compliancy Group is hosting a webinar that will explain the ins and outs of compliance and cybersecurity, and why both are necessary for patient privacy and your practice’s security.

During the webinar, Compliancy Group will explain how HIPAA compliance can be simplified, you will be walked through the regulation, and will be provided with actionable tips that you can implement within your practice today.

 3 learning objectives of the webinar:

  1. Why compliance and security are BOTH required for HIPAA compliance.
  2. How HIPAA and security help protect your patients.
  3. What you can implement in your practice now to avoid breaches and fines.

Webinar Details:

Compliance vs. Security: Why you Need Both to be HIPAA Compliant

Wednesday, July 20, 2022

11:00 a.m. PT ¦ 2:00 p.m. ET

Host: Compliancy Group

[contact-form-7]

The post Webinar Today: July 20, 2022: Compliance vs. Security: Why you Need Both to be HIPAA Compliant appeared first on HIPAA Journal.

Dalen Dental Clinic Confirmed as HIPAA Compliant

Dalen Dental Clinic in Whitefish, MT, has been confirmed as achieving compliance with the Privacy, Security, Breach Notification, and Omnibus Rules of the Health Insurance Portability and Accountability Act (HIPAA) and the standards of the Health Information Technology for Economic and Clinical Health (HITECH) Act.

Dental practices that conduct transactions electronically are classed as HIPAA-covered entities and are required to be compliant with the HIPAA Rules. Achieving and ensuring continued compliance can be a challenge, which is why many practices seek assistance from third-party firms. Dalen Dental Clinic chose Compliancy Group and used its HIPAA methodology, which includes a Six Stage Implementation Program, and the use of a HIPAA-compliance tracking software solution called The Guard.

“We as a private practice chose Compliancy Group and The Guard to take us through HIPAA compliance because it was recommended and it has benefited our office by keeping all of our staff aware of how secure things need to be, being HIPAA compliant is a priority of ours, we as an office strive to keep our patients and their health history safe and secure,” said Dr. Jeff Dalen.

After completing the program, which includes a comprehensive risk analysis and remediation process, Dalen Dental Clinic was assessed by Compliancy Group’s HIPAA subject matter experts, who confirmed that the practice was fully compliant with the HIPAA Rules and awarded the practice the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future patients that Dalen Dental Clinic is committed to ensuring the privacy and security of patients’ protected health information and has implemented an effective HIPAA compliance program to ensure continued compliance.

“Our office is proud to have completed advanced HIPAA training to help further protect our patients and learn about the importance of patient privacy to help achieve high-quality care,” said Dr. Jeff Dalen. “As a small-town family practice continues to grow, we want to ensure the practice and patients have the best experience by having technology but also protecting patients’ health information to a high degree. We look forward to serving our patients and community with the highest oral health care possible.”

The post Dalen Dental Clinic Confirmed as HIPAA Compliant appeared first on HIPAA Journal.

HIPAA Seal of Compliance Awarded to ScribeMedics LLC

ScribeMedics LLC, a provider of real-time, remote, EHR charting, medical transcription, virtual back office, and medical record review services, has demonstrated to Compliancy Group that the company and its services are fully compliant with the regulatory standards outlined in the HIPAA Privacy Rule, HIPAA Security Rule, HIPAA Breach Notification Rule, HIPAA Omnibus Rule, and the HITECH Act.

Compliancy Group offers HIPAA -covered entities and business associates a proven methodology for ensuring compliance with all provisions of the Health Insurance Portability and Accountability Act. HIPAA consists of a set of regulatory standards governing the security, privacy, and integrity of sensitive healthcare data called protected health information (PHI), which is any individually identifiable healthcare-related information.

Any vendor that is used by a HIPAA-covered entity that comes into contact with PHI in any form is classed as a business associate under HIPAA and must ensure they are HIPAA compliant. The services provided by ScribeMedics require contact with PHI, so HIPAA compliance is mandatory.

ScribeMedics chose to partner with Compliancy Group and used its Six Stage Implementation Program to ensure that no aspect of HIPAA compliance had been overlooked. Throughout that process, progress was tracked using Compliancy Group’s proprietary HIPAA-compliance tracking software solution, The Guard.

After completing the compliance program, which includes a risk analysis and remediation process, Compliancy Group’s HIPAA compliance experts assessed ScribeMedics’ HIPAA compliance efforts and awarded ScribeMedics the ‘HIPAA Seal of Compliance.’ The HIPAA Seal of Compliance demonstrates to current and future clients that ScribeMedics is committed to ensuring the privacy and security of PHI and has implemented an effective HIPAA compliance program.

“HIPAA Compliance is not only a regulation but our responsibility,’said Dinesh a.k.a Carl Johnson, Founder of ScribeMedics.

The post HIPAA Seal of Compliance Awarded to ScribeMedics LLC appeared first on HIPAA Journal.