HIPAA

​

Every Covered Entity and their Business Associates must implement processes, procedures and education and training to help ensure HIPAA compliance.

​

Often referred to as the 800 lb. gorilla in the room, HIPAA is often the one concept that everyone knows, but is the first to be overlooked. With the potential for steep fines assessed for the breach of protected health information (PHI), HIPAA compliance should be at the forefront of every organization's compliance goals.

​

Acevedo Consulting's HIPAA program is designed to incorporate HIPAA Privacy and Security. Where applicable, state privacy regulations may also be incorporated. Our Privacy and Security HIPAA Program consists of the following components:

​

• An assessment comprised of a "minimum necessary" self-assessment tool used to assist in documenting the "need to know" requirement of the Rule.

• A walk-through of the organization completed by a member of the Compliance Team, to assess possible risk areas not evident to the eye of an everyday employee.

• Working with the applicable entities to document the required Security Risk Analysis for the components identified on the Security Standards Matrix of the Security Rule.

• Based upon the data collected from the assessments and interactive feedback from the client, Acevedo Consulting develops HIPAA Privacy and Security policies and procedures including any relevant forms.

• Acevedo Consulting works with the organization to determine the best method to conduct policy and procedure training to all members of the workforce.

​

​