The Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the subsequent regulations issued by HHS will have a profound impact on healthcare providers, health plans, clearinghouses, and those who supply products and services to the industry.
To ensure compliance with government regulations and make your business processes and infrastructure secure and efficient, DNC Corp provides the following services:• Access education level and readiness for HIPAA regulations
• Inventory of the current state of your HIPAA-related processes from both administrative and technical viewpoints
• Analyze risk and determine and document the most effective strategies
• Develop a HIPAA compliance plan in conjunction with your organizations’ strategic initiatives
• Develop operational policy and procedures
• Provide oversight for implementation and testing
• Provide technical security evaluation
• Provide independent verification and validation of the status of your HIPAA readiness and compliance
• Monitor compliance and provide regulatory assistance on an ongoing basis
Getting Started – A Readiness Assessment
To help your organization develop an awareness of HIPAA, we will conduct a training session to acquaint your personnel with the requirements that need to be met. Next, we will conduct sessions with administrative and technical staff. These sessions will provide us with a broad understanding of the status of your organization relative to HIPAA requirements. We can then determine how we may best assist your organization.
DNC Corp’s HIPAA Compliance Assessment Services
DNC Corp’s HIPAA Compliance Services provide healthcare organizations with the necessary assistance to meet the challenges of HIPAA Administrative Simplification (AS). DNC Corp’s customizable, multiphased, requirements-based approach is used to assist our customers in achieving cost-effective HIPAA compliance. While addressing every phase in the compliance life cycle from ‘Awareness and Assessment’ to ‘Post-Compliance Assurance’, it can be easily tailored to address only those phases, depth of involvement, or AS rules in the customer’s interest. The following is a list of activities for each major HIPAA phase:
DNC Corp’s HIPAA Compliance Assessment Services
DNC Corp’s HIPAA Compliance Services provide healthcare organizations with the necessary assistance to meet the challenges of HIPAA Administrative Simplification (AS). DNC Corp’s customizable, multiphased, requirements-based approach is used to assist our customers in achieving cost-effective HIPAA compliance. While addressing every phase in the compliance life cycle from ‘Awareness and Assessment’ to ‘Post-Compliance Assurance’, it can be easily tailored to address only those phases, depth of involvement, or AS rules in the customer’s interest. The following is a list of activities for each major HIPAA phase:
Awareness and Assessment
• Conduct customer awareness/training briefs on HIPAA-specific issues and lessons
• Assess the organization’s HIPAA impact and perform gap analysis
• Conduct a risk assessment and generate a compliance profile
Planning and Analysis
• Support task definition and cost/benefit analyses
• Review and/or generate a compliance profile
Execution and Monitoring
• Support customers through assessment or hands on implementation
• Gather metrics and report on progress and risk
• Provide an audit trail of compliance tasks and products
Post-Compliance Assurance
• Perform ongoing compliance audits
• Track rule changes and conduct impact analyses
Experience – In addition to HIPAA compliance assessment services, DNC Corp has the staff and experience to provide assistance in achieving compliance.
• Detailed security assessment and monitoring including incident response and recovery
• Formal HIPAA training at the executive, manager, and staff levels
• Consulting on the security implications of HIPAA
• E-business consulting on merging HIPAA and e-business initiatives
Advantages of the DNC Corp Approach
• Service is adapted to customer’s business processes and priorities
• We have developed a fully populated requirements database on which our processes and checklists are based
• We can assess the best way to merge HIPAA compliance with planned e-business initiatives
• DNC Corp has extensive security credentials to assist in security rule compliance
• We help customers examine components of their business model, and identify impacts and associated costs/benefits
• DNC Corp performs risk assessments and works with customers to identify high risk areas
• DNC Corp generates plans, processes, and procedures necessary to implement a successful land cost-effective compliance effort
• We perform in-process monitoring and reporting, based on predefined metrics with priority on high risk areas
• DNC Corp utilizes our own HIPAA compliance toolbox to promote efficiency and improve communications