The 2013 Omnibus rule is a game changer of the HIPAA /HITECH since the act in 1996. With the Breach listing on the WALL OF SHAME by HHS and penalties up to 1.5 million dollars for Covered Entities and Business Associates, HIPAA Compliance is on the top of the agenda for many organizations.
The Administrative Simplification provisions of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) called for the establishment of standards and requirements for transmitting certain health information to improve the efficiency and effectiveness of the health care system while protecting patient privacy.
HITECH Act and HIPAA also have a host of new regulations to safegaurd the security and privacy of ePHI (electronic Protected Health Information). The regulations set standards for the security, privacy of all medical records and all identifiable health information and the security of PHI/ ePHI.
To be compliant, a Covered Entity and Business Associate must implement policies ,procedures and controls to secure their PHI/ePHI records, and comply with the HIPAA Security Rule, HIPAA Privacy Rule, and the HIPAA Breach Notification Rule requirements.
Each entity must comply with the the rights of patients else face fines, penalties and possible jail time for non-compliance.
• HIPAA breach remediation
• Incident management framework implementation
• Risk Assessment & GAP Analysis of your current environment v/s HIPAA requirements
• Risk Mitigation & Implementation of controls specific to People Process and Technology
• HIPAA Assurance with AICPA AT 101 SOC 2
• AICPA AT 601 attestion for HIPAA Privacy Compliance
• Governance and Privacy Maturity Model
Why Us ?
We provide end to end process for SOC Reporting Engagements. With data moving into the Cloud and increased use of BIG DATA, Cloud Security and Privacy concerns are on the rise. We conduct integrated Cyber security engagements with privacy engagements. AICPA has developed the SOC reporting framework for privacy, which can help organizations to ascertain their level of maturity for privacy. With more stringent regulations like HIPAA, EU-GDPR and enforcement of these privacy issues are causing nightmares to organizations.
Some of the advantages of working with Us are:
Download our SOC Reporting Services
Download our SOC 2 for Cloud Services
Download our SOC 2 for HITRUST/HIPAA Services
Download our GDPR Readiness Services
Download our SOC for Cyber Risk Services
Watch our you tube video on SOC reports for Cloud and Cyber Risks