What is HIPAA Compliance?
The Health Insurance Portability and Accountability Act (HIPAA), the privacy standard that affects those organizations that handle Personal Health Information (PHI), was put in place in 1998. This regulation provides controls that need to be followed by all organizations that handle PHI. Most recently,HIPAA has gained a great deal of traction because of the HITECH Act of 2009 which was part of the Stimulus Package. This act expanded HIPAA to all organizations that work with the healthcare industry as well as increasing fines and punishments for those that do not comply.
Why do HIPAA?
Compliance with the HIPAA Regulation is required by all entities that handle Personal Health Information (PHI). From healthcare providers to benefits administrators and pharmacies, HIPAA mandates that organizations have controls and processes in place to secure PHI. As seen in recent news, audits by the Department of Health and Human Services have begun, as has the issuance of the increased fines.
How can we help with your HIPAA Compliance?
While SecureState does not work with all aspects of HIPAA, our work within the healthcare industry has allowed us to craft the perfect solution for the security side of HIPAA and get you audit ready. As HIPAA is a government regulation, SecureState uses the NIST framework to measure an organization’s ability to comply with such a “loosely defined regulation,” as well as provide the proper validation services to help you understand exactly where you are in terms of compliance and how you get to where you need to be.