HIPAA Privacy and Security Reminders – Necessary Evil, Operational Baseline or Competitive Advantage?

HIPAA Privacy and Security Reminders – Necessary Evil, Operational Baseline or Competitive Advantage?

This entry is part 4 of 10 in the series HIPAA Privacy-Security Reminders

HIPAA Privacy and Security Reminders – Necessary Evil, Operational Baseline or Competitive Advantage?

How do you and your colleagues think about compliance with the HIPAA-HITECH privacy, security and breach notification rules?

We’re finding that organizations and their leaders are evolving their thinking about the safeguarding their members’, patients’ or customers’ personal information in general and the HIPAA-HITECH privacy and security regulations in particular.

HIPAA-Project-Program-StrategyFor some organizations, the HIPAA-HITECH regulations are still regarded as a necessary evil with responsibility often delegated to the lowest levels of the organization with the ol’ “handle it” method of assignment. In this scenario, some poor soul (who probably missed a meeting!) is given the task of getting a passing grade and/or keeping the organization out of trouble, whatever that means. There’s little or no budget or resource provided. Whatever effort is undertaken is referred to as the “HIPAA compliance project”. The use of the word project conveys the organizations belief that it will end! Little progress is ever made and few questions are asked. What may or may not be happening is rarely tied to the strategy of the organization.

In slightly more enlightened organizations, leaders have come to realize that safeguarding anyone’s personal information of any type and especially Protected Health Information (PHI) is a basic requirement of doing business in the new millennium… it is an operational necessity. They realized that privacy and security of PHI must be built into business processes and not be an after thought. In fact, these organizations realize that it much more than a government regulatory compliance program and that their members, patients and customers expect and deserve to have their PHI safeguarded. They realize it is an ongoing program that needs to be resourced and funded. They often refer to it as their “Patient/Member Privacy & Security Program”.

The most progressive organizations go even beyond the idea of a program. They treat the safeguarding of information as a core strategy. Just as over time organizations have built financial, technology, operational strategies to support the overall corporate strategy, they realize that there is an opportunity for competitive differentiation in how they protect personal information. We have seen such a program referred to as their “Marketing, Customer Service & Patient Safety Strategy”. Efforts are made to ensure there is alignment between their privacy and security efforts and the overall corporate strategy.

What should organizations do?

A great place to start this conversation in your organization is by completing a baseline Clearwater Strategic “Business and Information Privacy and Security Program” AlignmentCheck™ Survey. Try the survey and/or call us to discuss how you and your colleagues think about compliance with the HIPAA-HITECH privacy, security and breach notification rules.

What Other Resources Are Available to You?

Contact us for more information or to learn about a tailored Clearwater HIPAA Audit Prep WorkShop™ or the Clearwater HIPAA Audit Prep BootCamp™ series.

More HIPAA HITECH Resources:

The complete HIPAA Privacy, Security and Breach regulations are here.

Join our AboutHIPAA LinkedIn Group: http://AboutHIPAALI.org
Follow us on Twitter
Subscribe to our eNewsletter
Attend a live educational webinar.

Series Navigation<< HIPAA Privacy and Security Reminders – Lost USB Memory Drive Leads to $150k HIPAA Settlement for Small Dermatology PracticeHIPAA Privacy and Security Reminders – WellPoint OCR Settlement Agreement >>

Clearwater

Clearwater helps healthcare organizations ensure patient safety and improve the quality of care by safeguarding the confidentiality, integrity and availability of protected health information (PHI).

We have assisted more than 400 customers to operationalize and mature their information privacy, security, compliance and information risk management programs. And in the process, we are raising the bar for safeguarding PHI, protecting millions of Americans and driving real value for the organizations we support and the healthcare industry at large.

Latest posts by Clearwater (see all)

Posted in
Clearwater
Clearwater helps healthcare organizations ensure patient safety and improve the quality of care by safeguarding the confidentiality, integrity and availability of protected health information (PHI). We have assisted more than 400 customers to operationalize and mature their information privacy, security, compliance and information risk management programs. And in the process, we are raising the bar for safeguarding PHI, protecting millions of Americans and driving real value for the organizations we support and the healthcare industry at large.
Subscribe to our newsletter

Our monthly eNewsletter which includes industry articles and white papers that we’ve gathered for you. We’re confident you’ll find a nugget or two among them!

AHA_Seal_4C_Primary_4x4_300dpi-140x125

Health Care Information Privacy, Security, Compliance and Risk Management Solutions from Clearwater Compliance LLC have earned the exclusive endorsement of the American Hospital Association.

About Clearwater

Clearwater provides the most complete and trusted, enterprise-class cyber risk management solution available. Designed for healthcare providers and their partners, Clearwater’s IRM|Pro™ platform and experienced professional services team provide insights and actions to address compliance, cyber and patient safety risks. Clearwater is a 2017 Inc. 5000 fastest-growing company, the 2018 Best in KLAS winner in Cybersecurity Advisory Services, the 2017 and 2018 Black Book Marketing Research winner in Compliance and Risk Management Solutions, and exclusively endorsed by the American Hospital Association as well as numerous state hospital associations. Clearwater solutions have been deployed within hundreds of hospitals and health systems, Fortune 100 organizations, and federal government institutions. More information about Clearwater is at clearwatercompliance.com.

Show Buttons
Hide Buttons