HIPAA Risk Assessment
TCS can help your risk with HIPAA compliance by performing an HIPAA Risk Assessment on your network. The costs for HIPAA Assessment services are reasonable and will provide you with a wealth of information about the status of your network. Staying HIPAA compliant is not a one-time solution, like all security solutions it is multi-layered. Our recommendation is at least twice each year you have this assessment performed, so that you can take corrective action on the issues highlighted.
Short for Health Insurance Portability and Accountability Act, HIPAA provides national standards to protect the privacy of personal health information. To improve the efficiency and effectiveness of the health care system, the Health Insurance Portability and Accountability Act (HIPAA) of 1996, Public Law 104-191, included “Administrative Simplification” provisions that required HHS to adopt national standards for electronic health care transactions. Congress incorporated into HIPAA provisions that mandated the adoption of Federal privacy protections for individually identifiable health information. Webopedia
Compliance carry’s this further and is about executing on what was discovered in the assessment process. The three most important parts of HIPAA compliance are documentation, documentation and documentation. TCS has software tools that can help you with documentation and allow you to navigate through the requirements successfully.
If a laptop, hard drive or USB is lost or stolen you have to assume there has been a data breach. We would recommend that any device that leaves your premise or that is susceptible to being taken should have the hard drives encrypted. On the occasion that it disappears, the thief will be unable to read the information stored on the drive. If the drive is encrypted, you are not required to report the loss as part of your compliance, and you can avoid the costs and embarrassment of notifying all your clients.