What is HIPAA Compliance?
HIPAA compliance refers to conforming to the provisions of the Health Insurance Portability and Accountability Act Security Rule. This legislation requires that organizations that store, process, or send personal health information (PHI/ePHI) must ensure the safety of all protected personal data in their possession or that can be accessed by their Business Associates.
Compliance is tricky and very complex. This means complying with ambiguous language and terms like “addressable” which sounds optional but is mandatory. It is for that reason that we employ a team of experienced auditors and security consultants to produce a HIPAA Compliance Assessment report and detailed Opinion report. These reports map out your adherence to the HIPAA Security rule, show to what level you comply, and suggest how to achieve complete compliance (remediation). We also find the likelihood of compromise your organization faces should you choose to accept the risk of lower compliance.
You do not automatically comply with Texas HB 300 (Texas Medical Privacy Law) or California Medical Privacy Laws. Further, simple compliance comes nowhere near meeting Florida’s FIPA Privacy Law guidelines. HIPAA compliance becomes more complex and more costly if you fail to meet compliance requirements.
Spohn HIPAA Compliance Assesment Services
Spohn Security Consulting has 2 primary products used to assess the security and readiness of organizations that are required to comply with the HIPAA Security Rule: