HIPAAssociates offers training, operations and gap assessment, planning, and implementation for all 4 parts of the HIPAA Administrative Simplification. We do this using a structured process, provide our clients with tools, and use software to help our clients through the assessment, planning and implementation phases.
HIPAAssociates provides consulting services targeted at small and medium size providers and health plans. Why small and medium size? HIPAA legislation was written to be 'scalable' to any size organization, but by default contains requirements which do not apply to small and medium size practices. We help our clients identify the necessary requirements, and adopt a practical, low cost approach to implementing others.
Example 1: many HIPAA toolkits recommend designating HIPAA team roles, starting with the CEO and management team and ending with functional team leaders. Small and medium size practices have a small staff, and in some cases the same person may need to serve in the same HIPAA role. HIPAAssociates helps identify Privacy, Security and Transactions Officers in the organization, and communicates functional responsibilities.
Example 2: HIPAA security requirements contain a number of highly technical specifications which are designed to be implemented by an IT staff. Small and medium size practices often do not have IT specialists on staff, and will have to depend on technology vendors who in turn may not have a full understanding of HIPAA-specific requirements. HIPAAssociates helps practices evaluate their security requirements, and using the HIPAA Assessment tool, generate an action item list which explains what is required in non-technical terms, and includes only what is needed - no more, and no less. This eliminates the risk of the practice buying technologies or solutions they do not need.
We have gone through the legislation, filtered out requirements which do not apply to small and medium size providers and health plans, organized the information to make it easily digestible and usable, and compiled a list of information sources - in other words, approached the task of assessing, planning and implementing HIPAA the same way a small and medium size provider or health plan would, after spending months of studying the legislation. We then designed a process and software to help assess the requirements, communicate them in a clear and concise manner, and lay out a plan with all the key tasks so everyone in the practice knows what to do and when to do it. This minimizes the impact of assessment and planning on operations.
Our services are structured to offer maximum flexibility for our clients: