HITRUST certification enables a more robust HIPAA compliance posture by engaging in a risk-based review and offering prescriptive controls to mitigate risks.
The HIPAA Physical Safeguards risk review focuses on storing electronic Protected Health Information (ePHI). While the Security Rule focuses on security requirements and the technical safeguards focus on the technology, the physical safeguards focus on facilities and hardware protection. Healthcare providers, covered entities, and business associates must undergo audits to prove regulatory compliance so that they can assure new customers of their security posture. Beginning the road to HIPAA compliance requires assessing security risk and mitigation controls. A HIPAA Physical Safeguards Risk Assessment Checklist What is HIPAA? HIPAA was enacted in 1996 to protect information as people moved from one job to another. The US Department of Health and Human Services (HHS) additionally passed the Privacy Rule in 2003, defining Protected Health Information (PHI) as “any information held by…
The ONC Security Risk Assessment Tool incorporates 205 pages with 156 questions. This checklist helps organizations organize basic technology safeguards controls.
The penalties for violating HIPAA can be personally and organizationally destructive. Managing compliance using automation can ease the burden and keep you safe.