HIPAA/HITECH Compliance for IT
Moserhaus Consulting provides a unique wealth of knowledge and experience in healthcare IT compliance.
Our services to healthcare IT organizations include:
- HIPAA risk analysis
- Customized HIPAA privacy, security, and breach policies
- HIPAA training
- Business continuity and disaster recovery planning
- Outsourced Compliance (including Privacy Official role)
Read more about each of these services below.
HIPAA Risk Analysis
- Required under HIPAA for all Covered Entities and Business Associates
- Covers all areas of risk to the confidentiality, integrity, and availability of an organization’s e-PHI
- Designed as a “living, breathing” document for continual maintenance
Customized Policies
- Fulfills all requirements for HIPAA policy compliance
- Customized to your specific environment
- Smoothly integrates with your current policies and practices
HIPAA Training
- Fulfills HIPAA training requirements
- Engaging and entertaining
- Relevant to your organization’s environment
- Tests to ensure essential retention
Contingency Planning
- Key to effectively managing risk, and required under the HIPAA Security Rule for all Covered Entities and Business Associates
- We focus on clear, precise, time-sensitive, and prioritized recovery procedures (not on lengthy documents based on “fill-in-the-blank” templates, which are ineffective in the event of a true disaster)
- Plans must be “living, breathing” documents that are continually maintained
Outsourced Compliance
- Ensures comprehensive compliance with HIPAA/HITECH rules in all areas of the organization
- Fulfills Privacy Official role required under HIPAA
- Provides immediate updates with regulatory changes