HIPAA gets a bad rap – and deservedly so. However, most of that bad rap is because it is set up in a typical government fashion that is hard to understand and make sense of. When you look at the HIPAA laws and guidelines, it is not long before you become more perplexed than you were before.

However, once you get past the government’s idea of light reading, or by using our CompassDB tool which translates it into a humanly readable language, you realize that the HIPAA guidelines are not really all that cumbersome. In reality, they are your standard operating procedures for your business in a template that can cover many different types of organizations.

If you think about it, we should all want our business to continue no matter what happens. We all want to be resilient to threats, both internal and external, as they can affect our way of life. The Security Risk Analysis required by HIPAA (and MACRA and Meaningful Use) helps you identify security threats to your business. The other HIPAA requirements guide you on how to become more resilient when dealing with the threats.

By following the standards set forth by HIPAA, you drastically reduce your liability and your risk of business disruption.

Protect Your Patients.  Protect Your Practice. Protect Yourself™.

If you have questions about HIPAA, including how to conduct a Security Risk Assessment or how to best remediate identified risks, contact us: info@thirdrock.com; 512.310.0020.