SEARCH

Please enter a search term to begin your search.

Compliance and Risk Management for Healthcare Providers


Healthcare Regulations Supported

TruArx can help organizations comply with close to 500 regulations and standards. Typically, the ones below are most important to our healthcare clients:

 

  • HIPAA Security and Privacy
  • HITECH
  • FISMA
  • NIST 800 66
  • CMS Core Security Requirements
  • SOX 404 (including COSO, COBIT, and 15 others)
  • PCI DSS
  • Identity Theft Red Flag
  • State Privacy / Breach Notification Laws (over 75 laws)
  • International Privacy Laws (over 40 laws, including EU Data Privacy and PIPEDA)

 

Customers Served

TruArx has the healthcare industry experience to understand your business and technology issues. We are proud to serve:

 

  • Leading research institutions
  • Leading non-profit and for profit integrated healthcare networks

 

Relevant Services

While TruArx provides a wide range of services to clients from SaaS to consulting, the ones below are most commonly requested by our healthcare clients. Please click the service to learn more.

 

 

Information technology is at the heart of healthcare delivery today. Patient records and business processes are now ‘on-line’ and clinical devices are increasingly built around standard operating systems and networking protocols. Properly protecting the confidentiality, integrity, and availability of this information across diverse integrated care networks utilizing hundreds of applications is no trivial challenge. Further, a number of regulations and standards have been established to ensure the privacy and security of patient data. The Health Insurance Portability and Accountability Act (HIPAA) is just one of the more prominent examples. Finally, patient health information (PHI) is not the only data that must be protected. Proper controls must be implemented to protect personally identifiable information and cardholder data as well to meet state privacy and breach notification laws as well as the Payment Card Industry Data Security Standard (PCI DSS), respectively.

 

TruArx can help healthcare companies manage all these regulations and more through TruComply. TruComply is an easy-to-use IT governance, risk and compliance application which can be fully implemented with a few weeks.

 

Healthcare clients can use TruComply to manage both internal and business associates’ compliance. The recently enacted Health Information Technology for Economic and Clinical Health Act (HITECH) makes covered entities accountable for more active validation of business associates compliance with the HIPAA Privacy and Security Rules. This is no small challenge for healthcare providers that can easily have hundreds of “high risk” business associates who have access to patient health information. TruComply can automate this process, making regular business associate reviews feasible without a large compliance staff.

 

Additionally, TruArx consultants can assist healthcare clients by providing project-based services such as HIPAA/HITECH compliance / security assessments and disaster recovery and business continuity planning. Alternatively, for clients who lack the resources and skills to keep up with their compliance burdens, TruArx consultants can perform most IT compliance and risk management tasks through TruArx’ Managed Compliance and Risk Services.

Contact US

1.800.658.8709

or

click here to email