HIPAA
(The Health Insurance Portability and Accountability Act of 1996)

HIPAA calls for:

1. Standardization of electronic patient health, administrative and financial data
2. Unique health identifiers for individuals, employers, health plans and health care providers
3. Security standards protecting the confidentiality and integrity of "individually identifiable health information," past, present or future.

Let our Certified Privacy Officers perform a Gap Analysis to show you what you need to do to become HIPAA Compliant.

Once you know how to protect and keep your employees safe, then you need to make sure your business is safe. In the case of natural or any other disaster, how will you do business tomorrow? Where is your software stored? Where is your backup of data? Do you have the updates and patches and fixes applied over the years?

How do you contact your employees?

Simply, HOW do you do business at the highest percent possible?

Create a list of all your employees and how to reach them.

Distribute copies to emergency team leaders

Setup remote call forwarding service with your phone provider – In the event of a crisis, you can quickly re-route calls to a new location

Identify places that can be used as temporary relocation facilities, make arrangements before a crisis so your company and your employees have priority if space becomes scarce.

Back up all your computer data every night and store it in a secure off site location.

Make emergency arrangements with a service provider. If your business relies heavily on computers for its day to day operations arrange with providers to have replacement equipment computers and services available.

Document duties and responsibilities for each job. This allows someone to step in when a key employee is incapacitated

Is your office HIPAA Compliant?






Protect your business with the same software that the government uses. Insure data integrity and restoration by installing Tripwire before you are attacked.

 

 

 

 

 

 

 

 

 
Are you ready for HIPAA Security?
The Rule The rule applies to electronic protected health information (EPHI), which is individually identifiable health information (IIHI) in electronic form. IIHI relates to: 1) an individual's past, present, or future physical or mental health or condition, 2) an individual's provision of health care, or 3) past, present, or future payment for provision of health care to an individual. The primary objective of the Security Rule is to protect the confidentiality, integrity, and availability of EPHI when it is stored, maintained, or transmitted.
Who needs to comply Covered Entities (CEs) must comply with the Security Rule. These are health plans (HMOs, group health plans, etc.), health care clearinghouses (billing and repricing companies, etc.), or health care providers (doctors, dentists, hospitals, etc.) who transmit any EPHI.
How to comply. CEs must maintain reasonable and appropriate administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of their EPHI against any reasonably anticipated risks.
When The final Security Rule became effective as of April 21, 2003. Most CEs must be in compliance by April 21, 2005; small health plans (those with annual receipts of $5 million or less) have until April 21, 2006.
Has your Annual training been completed?
 
Contact our Privacy Officer to review your needs, and let us do the rest.
Proud Member of
BICSI: A Telecommunications Association
National Assoication of Women Business Owners
 Kissimmee Osceola Chamber logo with link to website. Jacksonville Chamber logo and link to website