The Health Insurance Portability and Accountability Act (HIPAA) of 1996 HIPAA imposes a number of compliance obligations on covered entities. The two areas that require the most attention to compliance detail can be summarized in two words: Privacy and Security.
KEY DEVELOPMENTS
- Effective April 20, 2005, all covered entities (except small health plans) that use or maintain electronic protected health information (EPHI) must be in compliance with the Security Rule.
- Effective April 14, 2003, all covered entities (except small health plans) must be in compliance with the Privacy Rule.
HOW CAN DAYLIGHT HELP
Our team includes the former Compliance officers, privacy professionals, former prosecutors, law enforcement agents, and information security experts who have created HIPAA compliance programs at hospitals, pharmaceutical companies, long term care facilities and clinical laboratories and have lectured extensively on the subject of HIPAA privacy and security.
DAYLIGHT HIPAA COMPLIANCE SERVICES INCLUDES:
- Establishment and development of policies and procedures to implement reasonable safeguards, and enhancement of existing safeguards, in order to remain above the necessary standards of ensuring privacy protection for individually identifiable patient health information (PHI) as required by the Office of Civil Rights of HHS.
- Development of security measures to ensure compliance with the specific requirements of the Security Rule including administrative, physical, and technical safeguards.
- Risk assessments and risk management to determine high-risk areas of unauthorized access and use of EPHI.
- Development of policies and procedures to continually meet standards of compliance, including documentation requirements and technology changes.
|
|
|
