|
We are a Registered
Government Contractor!
|
|
HIPAA Security |
| Questions and Answers |
|
Q: What is HIPAA?
A: HIPAA stands for "Health Insurance Portability and
Accountability Act" and was passed in 1996. It is a federal law
requiring hospitals, physicians, and managed care companies to adopt medical
information security, privacy and data standards. The "HIPAA
standards for the security of electronic health information" can be read
from the U.S. Department of Health & Human Services website at
http://www.cms.hhs.gov/hipaa/hipaa2/regulations/security/default.asp.
Q: What is HIPAA Security all about?
A: Part of HIPAA is the Security Rule which concerns the safety of
any Protected Health Information (PHI) that your practice has in electronic
form. Your data is vulnerable to many dangers: worms, viruses, hackers,
fire, vandalism, accidental erasure, curious intruders who feel like
snooping, and more. HIPAA says you must take steps to safeguard the data
from these dangers.
Q: Does it apply to me?
A: If your office has computers containing any type of PHI (e.g., if you use
computers for electronic claims or to keep patient records in any way),
and/or if you send or receive any PHI by any electronic means, the answer is yes.
Q: Is there a deadline for
complying?
A: Yes. The Security Rule states that deadline for
complying is April 21, 2005.
Q: Are there consequences for not
complying?
A: Yes. If any complaints are filed against you and/or you are
audited and found to have violations, there is a $100 penalty per violation
not to exceed $25,000 a year. There could be other civil and/or criminal
consequences as well. The "Procedures for Investigations, Imposition
of Penalties, and Hearings" document describes these and more and can be
read at
http://www.hhs.gov/ocr/moneypenalties.html.
|
| We Can
Help |
Universal Computing Solutions, Inc. can help your bring your medical
office computer systems into compliance with HIPAA Security.
We offer a complete analysis package that includes:
- On-Site: Gather general office computer system, usage and user
information.
- On-Site: Physically inspect and audit your computer system.
- On-Site: Run special hardware, software and security data gathering
utilities on each computer.
- In-House: Create a detailed analysis results report including
recommendations.
- On-Site: Deliver and discuss report and recommendations.
Some of the items audited in our analysis package include:
- Server and PC Security including user accounts, passwords, timeouts,
etc.
- Auditing and logging of activity
- Anti-Virus Systems
- E-mail Security
- Internet and Firewall Security
- Wireless Network Security
- Remote Access and Control Security
Once you have your analysis report and recommendations,
we can implement any changes that are needed if you wish. We
can provide any needed hardware,
software and services required. Costs for implementing changes will
vary widely depending upon the analysis results. We are happy to
provide estimates as needed.
|
| Our
Analysis Package |
|
Our Analysis Package provides you with a report that is a complete, professional binder containing
nearly everything you need to become compliant. Take a look at a
sample report:
(Click on image to see a larger version)
 |
 |
| A Complete, Professional Report in a
Binder. |
A sample of one of the Results and
Recommendations section pages. |
 |
 |
| The Report contains complete sections
with an index page and a CD with all of the necessary sample policy
and procedure template documents, PDF copies of the report and other
supporting software. |
The Report includes 40 Sample Policy
and Procedure Templates which you can use and modify to fit your
practices compliance. |
|
| Pricing |
|
Our package prices include everything to provide you with your HIPAA
Security computer system analysis and recommendation report including travel to and from
your office*
Take advantage of one of our analysis packages today!
| Number of
Computers |
Price |
| 1-5 |
$850 |
| 6-10 |
$1230 |
| 11-15 |
$1610 |
| 16-20 |
$1885 |
| 21+ |
Negotiable |
Contact us today at (716) 298-5290.
* 25 mile limit. Further distances
will require mileage charge. Each analysis applies to a single
location.
|
|
Disclaimers |
|
You, the medical office, are solely responsible for complying with HIPAA
Security Law. Universal Computing Solutions, Inc. only assists with
bringing your office computer systems to compliance. We can provide
information regarding full HIPAA Security compliance resources if necessary.
We will be happy to sign any business associate or privacy agreement you
may have regarding the confidentiality of your computer system information.
|
|
|
|
|
|
|
| |
We can help bring your
computer systems into HIPAA Security compliance. |
|
|
| |
|
| |
|
|
|
|
