Creation of a comprehensive HIPAA compliance program based on custom policies and procedures that meet the federal regulations.
Staff training (done annually) on regulations as well as specific guidelines for your organization.
Online access to forms and your policy manuals.
A dedicated Compliance Specialist so you have a contact to assist you year-round with any of your HIPAA issues.
Regular Compliance Reports notifying you of any risks.
HIPAA COMPLIANCE PROGRAM
WE'LL TAKE IT FROM HERE.
Your Customized HIPAA Compliance Program Includes:
POLICIES & PROCEDUES
We customize to your location and will include, among other things:
Identification of Privacy and Security Officer, Written Policies and Procedures, Patient's privacy rights, Internal and External information regarding access and disclosure, Process for handling Privacy and Security complaints, and HIPAA Security Guidance.
HIPAA HITECH / OMNIBUS RULE
We make sure that your HIPAA policies and procedures conform to the requirements found under the HIPAA Act, HIPAA HITECH, and the HIPAA Omnibus Rule. As additional guidance comes out from the federal government, we notify you and update your policies accordingly. Clients are also provided with all necessary corresponding HIPAA documents and forms.
ENHANCED SECURITY RISK ANALYSIS (SRA)
Rest assured that you’re compliant each year by having a certified HIPAA specialist review your online SRA and provide feedback. Your review includes a scheduled conference to review your SRA and a customized action plan to address any deficiencies or threats that need to be remedied. Year-round support is also included to help in completing your action plan prior to performing next year’s SRA.
BUSINESS ASSOCIATE AGREEMENTS
Updated Business Associate Agreements and sample cover letters are included along with a decision matrix to help you determine which of your vendors are considered a business associate. Online storage is available to scan and upload your signed business associate agreements as well.
HIPAA BREACH DETERMINATION & MITIGATION
Receive access to our online breach log and submit your “suspected” breaches to us for determination and mitigation. We will determine if a breach has occurred, who needs to be notified, and what corrective action needs to be taken. HCP will also provide you with all the necessary information required by the Department of Health and Human Services.
VIRTUAL HIPAA WALKTHROUGH
Gain access to our self-guided online HIPAA walkthrough to help you audit your organization by observing your site. This assessment may be completed either annually or as often as deemed necessary for each office. Clients may add notes and archive each assessment for tracking and audit purposes. It serves as a great companion to our Enhanced SRA and is easy to use with tablets or mobile devices to perform as you walk around your office.
DISASTER RECOVERY PLAN (DRP)
Receive a custom DRP that meets HIPAA compliance requirements and provides the steps to take in the event of an emergency in your organization. Your DRP can be updated and reviewed annually or as necessary and is available for training by your staff.
Year-round access to your compliance specialist to assist with any notices, claims, letters, fines, or audits from government organizations including the OCR, the OIG, or private auditors as it relates to your HIPAA program.