• Call us: (708) 365-1000 | (847) 450-6500

  • Compliance

  • HIPAA compliance for an organization revolves around protecting the privacy and security of Protected Health Information (PHI) that the organization has or will have access to. 

    Organizations looking to comply with the HIPAA regulations first must determine which regulations they are required to comply with. There are two distinct and separate regulations under HIPAA:

     

    HIPAA Privacy

    Safeguards for keeping protected health information safe from a people, administrative, and contractual standpoint.

     

    HIPAA Security

    Safeguards for keeping protected health information, specifically in electronic form, (computers, networks, email, software, electronic transmissions, etc) safe from disasters, hackers, and electronic theft.

    All organizations are required to comply with the HIPAA privacy regulations, since privacy involves safeguards from a people standpoint. Only those who store or transmit PHI electronically are required to comply with the HIPAA security regulations.

     

    What is involved in becoming HIPAA compliant?

     

    There are 3 parts to HIPAA compliance for an organization:

     

    • 1. Providing HIPAA Awareness Training to all employees of the organization that have access to PHI
    • 2. Implementing formal documents and controls for the organization to protect and safeguard PHI
    • 3. Training of a compliance officer (someone in the organization that is going to take responsibility for HIPAA at your organization)

  • HIPAA Training

    Is your staff up to speed on HIPAA? If not you are not alone. Don't panic, our trainers can help. We have experience dealing with practices from individual physicians to groups with 15+ locations. No practice is too big or too small to benefit from our our assistance. We want to make sure you have a complete understanding of what it takes to become HIPAA compliant, and to secure your electronic PHI.

  • We can fix that

    What makes Medicus unique is that because we are an IT company, we can do the remediation after the audit for you. There is no need to hire someone else as we can produce faster results than previously possible.