Many of the clients we work with are bound by some sort of compliance standard. One of the most prevalent is HIPPA or the Health Insurance Portability and Accountability Act of 1996.
From the Department of Health’s website: “The primary goal of the law is to make it easier for people to keep health insurance, protect the confidentiality and security of healthcare information and help the healthcare industry control administrative costs.”
All Health Care Providers, Health Care Clearinghouses and Health Plans must comply with HIPPA.
That sounds great, right? Now it gets complicated.
The Information Security piece of HIPPA has a guide for implementation that can be found here: www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/nist80066.pdf
That guide is 117 pages long. I hope you have some time on your hands for a little light reading.
Companies found to be in violation of the HIPPA compliance have paid anywhere from $50,000 to $4.3 Million to settle the cases.
To help our clients with this ordeal, we purchased a piece of auditing software that can find all the issues on your network that would be uncovered in a HIPPA audit.
We decided to be our own guinea pig and run it on our own network. I don’t want to startle you, but we didn’t pass the audit. Our issues were mostly cosmetic and required a lot of help and study from some of our software and hardware vendors to resolve. We WERE able to resolve all of our issues though and passed our most recent self-audit with flying colors.
We can do the same for you.
We can find the issues, and perform remediation before you get an audit. An ounce of prevention . . .
Call IntegrativeIT today to schedule your HIPPA compliance audit. We can also run audits for most any regulatory compliance including ITIL, ISO, COBIT, NIST, SOX and more.