Menu

HIPAA/HITECH compliance consulting

Compliance with the detailed requirements of the Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act regulations is a challenging and time-consuming task. These regulations are in place to protect the personal information of patients and compliance is mandatory. However, many organizations are short on staff or simply don't have the resources with the appropriate knowledge to manage the required compliance demands and address any security concerns.

Our services
We understand the unique regulatory challenges your organization faces to help comply with existing guidelines and identify where any security gaps may exist. Our information security and privacy consultants have extensive experience in evaluating organizational processes to help ensure they are compliant and sufficient controls are in place. We deliver data security and privacy solutions to a variety of health care organizations. Some of our HIPAA/HITECH compliance consulting services include:

  • Readiness review: We help you determine how ready your organization is to comply with existing regulations, including reviewing documentation, interviewing selected managers and making general observations.
  • Compliance assessment: We initiate an assessment that includes an in-depth review and analysis of policies, procedures and documentation, interviews with staff and testing existing processes and controls.
  • Risk assessment: We perform an accurate, thorough assessment in compliance with HIPAA/HITECH regulations, recording potential risks and vulnerabilities to the confidentiality, integrity and availability of protected health information.
  • Policies and procedures update: We assist you in adding to or updating your HIPAA/HITECH policies and procedures based on findings of a readiness review or compliance assessment. Our experienced consultants can also assist in developing and implementing these policies and procedures.
  • Self-assessment training: We utilize industry best practices, including training your personnel on how to conduct a HIPAA/HITECH compliance self-assessment. Training can be customized to attendees' experience levels.

Achieve Compliance with the DEA’s EPCS regulations

RSM has developed a compliance assessment approach in response to the Drug Enforcement Agency’s (DEA) Electronic Prescriptions for Controlled Substances (EPCS) regulations.

HIPAA/HITECH – Privacy, Security, and Compliance

Compliance with the Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act regulations is a challenging and time-consuming task.

Working with you for compliance with HIPAA/HITECH

HIPAA/HITECH compliance is challenging for most organizations. Whether you’re short on staff or simply don’t have the resources with the appropriate knowledge and expertise, RSM can help.

Most Popular Insights

INSIGHT ARTICLE

Beyond HIPAA compliance

Collaboration and alignment between IT audit and IT security helps health care organizations better manage information security risks.

  • Jonathan Dreasler, Adam Keagle, Greg Vetter
  • |
  • June 29, 2016

INSIGHT ARTICLE

Revenue integrity webcast series: Part 4 recap

This webcast summary focuses on the importance of corporate compliance effectiveness in health care organizations.

  • May 17, 2016

INSIGHT ARTICLE

HIPAA/HITECH critical security measures and best practices

Learn about the importance of security breach awareness and proper planning in part 2 of the series.

The board of directors’ role in information security and privacy

WHITE PAPER

The board of directors’ role in information security and privacy

As IT systems and processes become more integral to businesses and vulnerable to hackers, the board must adapt to address security and privacy risks.

  • Daimon Geopfert
  • |
  • October 28, 2014

INSIGHT ARTICLE

Implementing a proactive data security plan: The 3 stages of a data breach

Every business is vulnerable to a potential data breach, and companies must implement proactive strategies to prepare for, and react to, an incident.

  • Andy Obuchowski
  • |
  • September 05, 2014
Size doesn’t matter: The anatomy of a data breach

INSIGHT ARTICLE

Size doesn’t matter: The anatomy of a data breach

You may think you are too small to suffer a data breach. Think again. Hackers target businesses of all sizes and industries, and your data is at risk.

  • August 20, 2014

RECORDED WEBCAST

Health care's big issues in 2014

From mergers to compliance, listen to three webcasts in this series to understand the big challenges, and opportunities, impacting health care.

  • May 22, 2014

RISK BULLETIN

Five reasons to re-evaluate your mobile security policy

A detailed look at the items that organizations should include in their mobile device security plans.

  • Loras Even
  • |
  • March 12, 2014

RECORDED WEBCAST

Proactive planning for HIPAA HITECH and IPPS proposed rules for 2014

Join us for a two-part webcast on two critical regulations impacting the health care industry: the HIPAA/HITECH Act and IPPS Regulations and Notices.

  • May 23, 2013
Proactively staying on top of HIPAA HITECH compliance demands

CASE STUDY

Proactively staying on top of HIPAA HITECH compliance demands

One of the top 50 largest nursing facility companies realized the critical importance of staying ahead of HIPAA/HITECH compliance demands.

  • March 19, 2013

How can we help you?

To discuss how our team can help your business, contact us by phone 800.274.3978 or


Receive Senior Living Health Care Connection by Email

subscribe



Events / Webcasts

RECORDED WEBCAST

Health care industry issues and insights webcast series

  • November 17, 2016

IN-PERSON EVENT

Denver Adaptive Insights financial planning and analysis briefing

  • October 12, 2016

RECORDED WEBCAST

Achieving digital readiness in your nonprofit organization

  • July 12, 2016