• linkedin
  • Increase Font
  • Sharebar

    5 ways to get the most out of an IT partner




    4. Documented HIPAA compliance

    Practices need to have their technology practices in line with HIPAA requirements and should expect an IT partner to be able to document the practice's compliance efforts. This is essential because certain records are needed in the event of an Office of Civil Rights (OCR) audit or a breach. Most practices are probably not aware of the OCR's recent statements that it's increasing its audits of practices, but partner firms certainly should be.

    It's important to differentiate between HIPAA compliance of your individual vendors and your practice as a whole. Is your cloud-based EHR solution HIPAA-compliant? Of course it should be and probably is. But that doesn't mean your practice as a whole is compliant. Are you regularly updating software patches on your desktop software? Are you managing encryption on employee mobile devices?

    Some IT partners, for instance, will offer practices an online portal that shows the status of the firm's compliance from the last risk assessment forward, including their efforts to remediate gaps, employee training efforts, and more.

    Adam Levy
    Adam Levy is the founder of Magnet Solutions Group, an IT company that helps businesses implement secure, agile, and scalable technology ...


    You must be signed in to leave a comment. Registering is fast and free!

    All comments must follow the ModernMedicine Network community rules and terms of use, and will be moderated. ModernMedicine reserves the right to use the comments we receive, in whole or in part,in any medium. See also the Terms of Use, Privacy Policy and Community FAQ.

    • No comments available

    Latest Tweets Follow