Hundreds of Raving Fan Customers!

Your peace of mind is important to us! In addition to the testimonials below, we also have some impressive case studies and can provide references on request.

Testimonials

Clearwater’s HIPAA Compliance and Information Risk Management BootCamp has Excellent material, information, and panel of speakers.
Trey Watts, Sr. Systems Engineer, Symantec
Boston Children’s Hospital, a Harvard Medical School Teaching Hospital and the #1 children’s hospital in 2015-06-19_0930the nation for 2015-2016, according to U.S. News & World Report, become a subscriber to Clearwater’s IRM|Security™ software in December 2012.

We’ve used the software to meet HIPAA Security Rule and Meaningful Use Rule risk analysis requirements. We’ve attended a variety of Clearwater Compliance educational events and have always found the Clearwater team to be focused on our requirements and to be extremely responsive. We recommend Clearwater’s software tools and their NIST-based approach to information risk management to other healthcare organizations working to operationalize their programs

David St. Clair, IT Audit & Compliance Manager, Boston Children's Hospital
Clearwater Compliance was engaged by us in 2014 to perform a HIPAA Security Assessment and a HIPAA Security Analysis to get a third party view of our control environment. Clearwater Compliance consultants were professional and very knowledge on HIPAA/HITECH requirements; in leveraging their SaaS solution for the Security Assessment and Security Analysis, meetings were scheduled and status updates on the project’s goal were provided in a timely manner. Overall, I am happy with the services that Clearwater Compliance provided and I will definitely do business with them in the near future.
Dr. Howard Phillip, CISSP, CRISC, Director, Information Security, MDLIVE
The level of knowledge provided by Clearwater’s consultants was outstanding; their willingness to go the extra mile to help us complete our project successfully, and for the amazing amount of knowledge they shared with all our teams and our executive management (info was also skillfully delivered and explained in such a way that made it easy for all level of management to understand).
Project Manager for a large pharmaceutical company for which Clearwater conducted a number of services
When teaching risk analysis in information security coursework, having a highly effective real-world tool to reinforce academic concepts is invaluable. My students have come to greatly appreciate the work involved in risk assessment, and now recognize the value added from effective tools like Clearwater Compliance IRM|Analysis that operationalize NIST’s national standards in security management. They now take highly-desired risk assessment skills into the workplace because of their experience with Clearwater Compliance IRM|Analysis, narrowing the gap between academic theory and real-world application.
Dr. Michael E. Whitman, Ph.D., CISM, CISSP, Executive Director, Center for Information Security Education & Professor, Kennesaw State University
I just passed my HCISPP certification exam! And I have to thank Clearwater Compliance for the great preparation for the exam I received by participating in two of their educational events:

The three-day (ISC)²® HCISPP℠ CBK® Training Seminar hosted and taught by Clearwater was very helpful in preparing me for the exam and the flash cards and exercises were great tools for study; and

The Clearwater Information Risk Management BootCamp™ provided more in depth risk management education than even the HCISPP course. And, it helped me connect the dots between information privacy and security and overall risk management. The exam included several questions about risk management that weren’t covered in the HCISPP Training Seminar. By attending this intensive one-day course after the first one, it helped me more than anything I did to prepare for the exam.

It is a difficult exam, even with my on-the-job experience. I’m so glad I was able to do both! I feel much more equipped to provide informed guidance to my company’s information privacy and security compliance and risk management programs now!

Bethany Moss, Quality Assurance Compliance Administrator, CareHere, LLC
Bob, I attended the AHIA webinar today and wanted to tell you that I thought you were one of the best presenters ever. You were confident and sounded extremely knowledgeable – like one does when they know a subject like the back of their hand. I also like the way you seamlessly worked in the questions from the group.
Sherry D McLendon, Internal Auditor, Memorial Health
I just wanted to let you know that your webinar today was one of the best that that I have ever attended.
Dan Landsberg, CISA CRISC, Senior IT Auditor, University of Washington
Your [presentations are] great by the way haven’t had a chance to say THANK YOU! The webinars you have out on the web are excellent and your teaching style is outstanding. Hoping to meet you in person one of these days and or get you guy’s onsite sometime for on hands training.
Mike Bray, CISM, CRISC, Founders Federal Credit Union
You, Mary and others at Clearwater have always been a beacon of light for us during the rocky waters of the new era of compliance. Everything from your overall companywide assessment to the one off email questions (and everything in between like boot camps and webinars) have always been professional, well organized, thoughtful and helpful for us here at Partnership.
Robert Layne, ‎Director of Government and Public Affairs, Partnership HealthPlan of California
Clearwater is the only organization I have found that takes the guidance from OCR and puts it into a simple automated NIST process.
Mitch Thomas, Encompass Health
The team at Clearwater is easy to engage with and reach out to whenever there is a question.Their Security Risk Analysis Workshop ™ went smoothly from start to finish, from scoping the agreement to receipt of the final report.
Andrea B Thomas-Lloyd,Director, Information Protection & Assurance, Lancaster General Health
Performing the Risk Analysis is a daunting task each year. Bringing the previous review findings forward and having a starting point was always difficult. Clearwater Compliance provides the step by step workflow, detailed help and assistance back to NIST and HIPPA/HITECH references that allow for a clear and defined process.

Clearwater staff have been tremendous to work with. The initial training was exceptional; we did not need to ask any question during our first complete review.

IRM |Pro provided a defined Risk Analysis workflow for our IT staff to follow during the Risk Analysis review and following updates.

Clearwater continues to add great value to their SaaS suite with updates and nice reference features.
We have finally found a partner we can build a long term relationship with, one whose sole focus is not on the dollars but on how great they can make their product for us.

Mark Rooker, Director Information Systems, Susan B Allen Memorial Hospital
Madison Health has purchased several of Clearwater’s software applications; Privacy, Security and Risk. We also commissioned Clearwater to do our Risk Analysis utilizing their Risk Analysis package. I am very impressed with the Professionalism, Attention to Detail and the knowledge level of all those we have come in contact with. The quality and content of their website and the webinars they conduct are extremely valuable to our organization. It is a pleasure working with their team.
Dennis Vogt, CPHIMS, Director IT, Madison Health
Based on all I’ve seen over the years, Clearwater’s risk analysis methodology and software are in the best-of-breed tier and can be seriously considered by any organization striving to meet regulatory requirements in performing HIPAA Risk Analysis.
Leon Rodriguez, Former OCR Director, Seyfarth Shaw LP
The Clearwater team has been incredibly responsive to our needs. The additional training and support they provided kept us on task, on time and on budget. The Clearwater Risk Analysis software [IRM|Analysis™] helped us organize and take control of our risk management process. Clearwater provided the necessary guidance for us to ensure we were productive while staying within compliance
*, Advanced Radiology Services
IRM|Analysis™ is making my job much easier. How would I follow NIST without this software? It is really well designed.
Morris Shaw, 3DR
I don’t know how anyone can deliver the risk analysis OCR is expecting without using your software
Chief Compliance Officer, Large Midwest Integrated Delivery Network
Clearwater’s compliance tools, such as IRM|Analysis™, have created an internal infrastructure that allows us to meet the most rigorous demands of Compliance annually. The service support we receive across all their products has been exceptional from the first day we began working with them
Ed O’Mara, President/CCO, Innovative Care Management
We have finally found a partner we can build a long term relationship with, one whose sole focus is not on the dollars but on how great they can make their product for us
Mark Rooker, Director Information Systems, Susan B Allen Memorial Hospital
Clearwater have always been a beacon of light for us during the rocky waters of the new era of compliance.  Everything from your overall companywide assessment to the one off email questions (and everything in between like boot camps and webinars) have always been professional, well organized, thoughtful and helpful for us here at Partnership.
*, Partnership Health Plan
As an educating organization, Clearwater has embraced the next generation of Security Risk Professionals. Working with the Clearwater for the past 5 years has been an honor. I have the privilege of exposing our students to the best of breed IRM|Analysis™ product created by a best of breed company.
Professor Jim Furstenberg, Ferris State University
When teaching risk analysis in information security coursework, having a highly effective real-world tool to reinforce academic concepts is invaluable.  My students have come to greatly appreciate the work involved in risk assessment, and now recognize the value added from effective tools like Clearwater Compliance IRM|Analysis that operationalize NIST’s national standards in security management.  They now take highly-desired risk assessment skills into the workplace because of their experience with Clearwater Compliance IRM|Analysis, narrowing the gap between academic theory and real-world application.
Dr. Michael E. Whitman, Ph.D., CISM, CISSP, Executive Director, Center for Information Security Education & Professor, Kennesaw State University
It was an awesome success, as you will see from the student feedback.  The ability to apply risk methodologies and use a high quality tool to drive lessons home is priceless. As always, I am honored to be working with you guys. Thank you for helping me educate the next generation of InfoSec professionals!
Professor , Ferris State University
Madison Health has purchased several of Clearwater’s software applications; Privacy, Security and Risk. We also commissioned Clearwater to do our Risk Analysis utilizing their Risk Analysis package. I am very impressed with the Professionalism, Attention to Detail and the knowledge level of all those we have come in contact with. The quality and content of their website and the webinars they conduct are extremely valuable to our organization. It is a pleasure working with their team.
Dennis Vogt, CPHIMS, Director IT, Madison Health
When we became aware of the AHCCCS 3rd party HIPAA Security Rule audit requirement, we knew immediately that we should contact Clearwater. The Clearwater team had previously assisted a large number of Tenet-owned providers with privacy, security, compliance and information risk management matters. Even though the specific AHCCCS requirements only included an audit of HIPAA Security Rule compliance, knowing the rigor of their work, we chose to have Clearwater audit our HIPAA Privacy and HITECH Breach Notification compliance at the same time. We gained exceptional peace of mind as the result of their work.
Phoenix Health Plan, a Tenet company
Boston Children’s Hospital, a Harvard Medical School Teaching Hospital and the #1 children’s hospital in for 2015-2016, according to U.S. News & World Report, became a subscriber to Clearwater’s IRM|Security™ software in December 2012.

We’ve used the software to meet HIPAA Security Rule and Meaningful Use Rule risk analysis requirements. We’ve attended a variety of Clearwater Compliance educational events and have always found the Clearwater team to be focused on our requirements and to be extremely responsive.

We recommend Clearwater’s software tools and their NIST-based approach to information risk management to other healthcare organizations working to operationalize their programs.

David St. Clair, IT Audit & Compliance Manager, Boston Children's Hospital
Clearwater have always been a beacon of light for us during the rocky waters of the new era of compliance.  Everything from your overall company wide assessment to the one off email questions (and everything in between like boot camps and webinars) have always been professional, well organized, thoughtful and helpful for us here at Partnership.
*, Partnership Health Plan
Can you imagine how nice our lives would be if all software vendors were like Clearwater? We ask a question, we get an answer. We need training, they provide it. Software works as advertised. What a concept!
Grace Barry, IT Director, Family Service League
As a non-profit working with an under-served population, we needed to find expert resources to respond quickly and effectively to the data requests and questions from OCR following the theft of a server. With Clearwater’s help, our response was timely, accurate and compelling. Bottom Line: No fines were assessed.
*, Shield for Families
Without Clearwater’s guidance and support, we would never have received the accolades from the OCR investigator for our compliance program that we did.
*, Hospice Compassus
[The OIG inquiry] went really well! The auditors were very complimentary and impressed. They requested some additional financial information and that was it. The PowerPoint really helped to keep them constrained and to answer questions before they are asked. On behalf of the MCH team, I would like to take this opportunity to thank you for all your assistance and guidance. Your input really helped us to successfully culminate this process.
*, Nicklaus Children’s Hospital
One of our portfolio companies was on a tight schedule and the Clearwater team stepped in, completed a high-level assessment, formulated a strategic plan and delivered on the established priorities while minimizing distraction of the workforce.
*, Cressey & Company
CareSource engaged Clearwater Compliance to perform HIPAA-HITECH Privacy, Breach Notification and Security Rule compliance assessments following an intensive RFP and decision-making process. We chose Clearwater based on the following characteristics:

– A demonstrated understanding of HIPAA-HITECH regulations
– Well thought-out and easy to understand assessment tools and processes
– Clearwater’s ability to engage was immediate, with well-planned milestones that minimized the impact on CareSource’s resources
– Reasonable fees for the work to be performed
– Clearwater’s commitment to help us become self-sufficient by providing software and methodology training was unique
– From start to finish the engagement was managed smoothly and professionally

The principals, Jason Riddle and Wes Morris, were knowledgeable, skilled, and personable communicators; effective in engaging the WorkShop participants to discover and address our needs and educate us along the way. The software as a service directly addressed each identified gap, and provided a clear remediation plan; along with a final report that broke down the tasks we needed to accomplish in an effective way.Clearwater’s support didn’t end with a final report. We requested and received assistance and interpretation since the primary work finished, and the principals have been responsive and helpful.

Clearwater’s software is intuitive and easy to use as a means to guide our ongoing efforts, as well as maintain and report our compliance status.The tool is very simple to use and the reports helpful and easy to generate.

Mary Eileen Lechleitner – Privacy Specialist, CareSource

Read more with case studies from our recent clients

  • Encompass Health

Encompass Health

  • Sentara

Sentara

  • Pulsara

Pulsara Case Study

Contact Us

Want More Testimonials, Case Studies or References?

Contact our team and we will be happy to provide any additional information about our experience.
Contact Us