• search
HIPAA COMPLIANCE EXPERTS
Call Today: (800) 733-6379

HIPAA Compliance Services

At Colington Consulting, we offer a variety of services for healthcare organizations, business associates, and dental offices to meet regulatory HIPAA compliance requirements. Leveraging our experience in government operations, Colington Consulting offers expertise to implement compliance programs and make sure you have the proper safeguards in place.

Whether you are a healthcare provider or a business associate seeking assistance with HIPAA Security and Privacy Rule compliance, our solutions are designed to maximize your valuable time. Colington Consulting provides consultation should your practice or business be the subject of a HHS-OCR compliance investigation or audit.

Think it can’t happen to you? Almost 112 million health records were affected by reported HIPAA breaches in 2015, and data breaches caused by employee carelessness are on the rise.

Let Colington Consulting help implement your compliance requirements to mitigate your risk. Contact us at (800) 733-6379 or info@colingtonsecurity.com to get started with a risk assessment or enroll in our HIPAA compliance training courses.

HIPAA Security Risk Assessments

A security risk assessment is the first step to identify vulnerabilities and risks, determine the potential impact, and provide a gap analysis. All assessments will include remediation action plans to prevent unauthorized access, tampering, and theft.

Colington Consulting's assessment is formatted to cover all the addressable and required specifications in the Code of Federal Regulations for the HIPAA Security Rule, HITECH the HIPAA Omnibus Rule and applicable parts of National Institute of Standards and Technology (NIST) requirements.

Once completed, our assessments are easy to understand and show what steps need to be taken to mitigate risk. We assist you with every step in the process.

HIPAA Privacy Risk Assessments

A privacy assessment will determine if an organization is meeting requirements of the HIPAA Privacy Rule.  A comprehensive assessment report is provided.  

HIPAA Risk Management Plans

Colington Consulting develops and helps your practice or business implement a risk management plan and a comprehensive compliance program. 

Think of your risk plan as your overall policies and procedures manual on how to make decisions to address security risk and vulnerabilities for HIPAA Security Rule compliance.

Your completed and customized plan will address all the required topics to include administrative, technical, and physical safeguards. 

Regardless of practice or business size, a risk management plan is required. This may be one of the first documents the Office for Civil Rights (OCR) will request if there is a breach of electronic patient records or if a compliance audit is conducted.

Business Associate/Vendor HIPAA Evaluations

Colington Consulting provides assistance in monitoring your Business Associate vendors.  We conduct third party vendor evaluations to determine if the necessary safeguards are in place to receive, maintain or transmit your organization's ePHI.  We can manage the entire process for your organization by outsourcing this task to us.  

These evaluations can be conducted prior to signing a Business Associate Agreement or at any step along the way including being done on an annual basis for current Business Associates.  Let us handle this process for your organization. 

Contact us for more information on making vendor monitoring part of your overall HIPAA compliance program.  

HIPAA Security Awareness Training

Colington Consulting can develop web-based security awareness training specifically designed for your practice or business office environment. 

Our training will address the HIPAA Security and Privacy Rules, along with the four required implementation specifications: security reminders, protection for malicious software, log-in monitoring, and password management. 

We conduct initial, comprehensive training and offer periodic refreshers.

Please see our HIPAA Training page.

HIPAA Privacy Policy and Procedure Manual

The HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to healthcare providers that conduct certain healthcare-related transactions.

The rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without authorization.

The best way to ensure your staff is familiar with the appropriate safeguards is by having a HIPAA Privacy Policy and Procedure Manual. Colington Consulting develops and help your practice or business implement a privacy manual.

HIPAA Breach Response and Management

As HIPAA compliance experts and former criminal investigators, our team can rapidly respond on-site to assist your organization in conducting a HIPAA breach investigation.  Our investigative process is a systematic approach to determine how the breach was caused. Our assistance will:

  •  Manage the incident response for your organization
  •  Investigate and determine the cause of the breach
  •  Conduct workforce interviews for adherence to policy and procedure
  •  Ensure the HHS Breach Notification Rule process is being followed
  •  Work with legal counsel to meet any organizational obligations or other potential violations of law
  •  Manage post-incident activities and offer expert analysis 
  •  Provide organizational support and assistance as part of any OCR investigation

Our assistance may include conducting an IT forensics assessment; IT systems penetration testing, and accurately determining all IT assets that access ePHI.

Comprehensive HIPAA Documentation Review

If your practice or business already has documentation in place, Colington Consulting can conduct a review of those documents to ensure you are meeting the current HIPAA Security Rule and HITECH compliance requirements for patient electronic health records. 

This cost-effective review can determine if all high-risk areas for compliance are being properly addressed. Our written and objective analysis of your current HIPAA compliance program can be used for attestation purposes. 

Hourly HIPAA Consulting

Does your organization constantly have questions about HIPAA privacy and security issues?

Is your business looking to provide services in the healthcare sector and needs to know what HIPAA issues you will face?

Are you a developer considering launching a healthcare app and need a data flow analysis to determine if any protected health information will be accessed, stored, or transmitted?

These are all circumstances in which Colington Consulting has provided hourly consulting to advise our clients on what the HIPAA requirements call for. 

If your organization is looking for advice regarding best practices, let us provide the expert guidance and resources you need to make sure HIPAA requirements are followed. Our hourly consulting is billed in quarter increments.

Colington Consulting

HIPAA Training Courses

HIPAA Training Courses

Learn More & Register