HIPAA Compliance Consulting:
Security Rules and HITECH Act of 2009

HIPAA's Final Security Rules published in 2003 define specific requirements that will impact on the medical practices, practice management software, system consultants, business associates and healthcare provider. The HIPAA security regulations do not mandate use of any particular technical system or safeguards. The recently enacted American Recovery and Reinvestment Act (ARRA) of 2009 that includes the Health Information Technology for Economic and Clinical Health Act or "HITECH Act" will. The Department of Health and Human Services ("HHS") will issue guidance annually on the "most effective and appropriate technical safeguards for use in carrying out" the HIPAA security standards.

SNP provides security consulting services to address the security and protection of data that will require a comprehensive approach as required by these Regulations, HIPAA and ARRA. SNP has dissected the four parts that HIPAA Security Rules have defined. We have developed many sub-categories for the purpose of analyzing, developing recommendations and implementing a security compliance plan.

SNP will deliver:

  • Regularly meet with you and your staff to design an efficient plan to integrate your business with cutting edge technology that's best suited for you

  • As-is Document: Will describe the state of security of client's operations

  • Gap Analysis Report: Will describe the deficiencies in security of client's operations

  • Recommendations: Will describe what needs to be done to remove deficiencies

  • Implementation Plan: Will describe the tasks required to remove deficiencies

  • Technical and Administrative Training Document: Will describe what is expected of the staff to maintain compliance

  • List of Critical and Important Items Requiring Monitoring: Will describe the plan on how to monitor the operation for compliancy

For more information please call SNP at (203) 287-9114 x112.