HIPAA

The Health Insurance Portability and Accountability Act (HIPAA) Final Rule on Security Standards, issued on February 20, 2003, was enacted to ensure the confidentiality, integrity, and availability of electronic protected health information (EPHI). It lays out three types of security safeguards for EPHI that covered entities are required to put in place: administrative, physical, and technical. For each of these types, various security standards are identified; and for each standard, both required and addressable implementation specifications are provided. Specifications must be carefully interpreted to meet HIPAA intent while also fitting within an organization’s operations. AppliedTrust’s extensive experience in healthcare gives you a partner who can help you interpret and address HIPAA requirements in a reasonable way.

Regulations such as the HIPAA Security Rule give healthcare-related organizations guidance regarding how they develop and implement IT security practices and systems for capturing, storing, and securing electronic healthcare information. However, the “alphabet soup” can be confusing, and organizations can become unsure of how to achieve compliance or when standards compliance is compulsory and when it is optional. AppliedTrust can help navigate these waters.

Let us bring a practical approach to your compliance efforts. Call us at (303) 245-4545 or contact us online.