HIPAA Security Suite
by Acentec, Inc.
Confronting HIPAA Compliance
The Omnibus Rule changes everything.
In 1996 the United States federal government passed Health Insurance Portability and Accountability Act, commonly referred to as “HIPAA”. Although HIPAA has been “on the books” for several years, it’s only been since the passage of the American Recovery and Reinvestment Act (ARRA) of 2008 that the Department of Health and Human Services (HSS) was given the teeth to enforce the laws. The Health Information Technology for Economic and Clinical Health (HITECH) Act portion of ARRA contains the body of laws that encompass the guidelines for Meaningful Use. Subtitle D of the HITECH Act addresses the privacy and security concerns associated with electronic protected health information (PHI).
"When we researched the requirements we needed to meet, and the time it was going to require to become compliant, the HIPAA Security Suite proved itself to be a cost effective solution."
Bonnie Lynch, Administrator, Mountain Valley Orthopedics
"We've been using Acentec for software and IT support for several years. When they released their HIPAA program, we looked around and couldn't find anything as comprehensive as what they offered." -
Dr. Bruce Hoyle, Advanced Vein Center
With the passage of the American Recovery and Reinvestment Act came over 2,000 pages of new rules and guidelines medical practices would be expected to adhere to in order to achieve “Meaningful Use”, or, in other words, the ability to demonstrate that they utilize an electronic medical records system in a meaningful way. Left out of most discussions has been the new laws regarding information security that will be enforced under ARRA. The Health Insurance Portability and Accountability Act (HIPAA) laws protect PHI (“protected health information”) and now bear significant penalties. ARRA ushers in a stricter enforcement of HIPAA laws, and incorporates an extensive list of specific requirements.
We know by sampling our own medical practice IT client base that few, if any, practices are prepared for these new requirements. Even worse, when assisting one of our clients in their quest to become HIPAA Compliant (as defined by these new requirements), there was no single source that offered everything a medical practice needed to become HIPAA compliant and thereby fully qualify for Meaningful Use. In short, if you don’t address the HIPAA portion of ARRA, and you get audited for your Meaningful Use verification, you may have done everything else right, but you will not pass, and if a breach if PHI is discovered or witnessed (even by a patient), your practice, you, AND your employees could face fines and, believe it or not, jail time. That’s right, HIPAA is no joke. Acentec created HSS (the HIPAA Security Suite) to be a one-stop solution for your HIPAA compliance. The HIPAA Certification, issued by The HIPAA Institute, is the only solution your practice needs for total protection.