top of page
Image (5).png

Health Insurance Portability and Accountability Act (HIPAA)

Intended to safeguard the security and privacy of personal health information, the Health Insurance Portability and Accountability Act (HIPAA) isn’t just for healthcare providers. All organizations that interact with healthcare data need safeguards in place to ensure that protected health information (PHI) and personally identifiable information (PII) don’t fall into the wrong hands. But, from covered and hybrid entities to required and “addressable” specifications, HIPAA requirements can be confusing— and, with civil and criminal penalties for noncompliance, the stakes are high. Proactively conducting a gap analysis against the Security, Privacy, and Breach Notification Rules can save your organization millions in the long run.

How We Can Help

With 22 years of experience and senior HIPAA consultants with such certifications as HealthCare Information Security and Privacy Practitioner (HCISPP) and Certified HIPAA Professional (CHP), we’ll make sure you’re in the right hands. Our HIPAA compliance services include:

HIPAA Security Rule Compliance

Our consultants compare IT policies, procedures, systems, and networks to the Administrative, Physical, and Technical Safeguards required by the HIPAA Security Rule. We also identify systems and devices involved in the creation, transmission, or storage of electronic (ePHI) and evaluate these technologies for technical threats, vulnerabilities, and risks.

HIPAA Privacy and Breach Notification Rule Compliance

Securance maps departmental policies and procedures to HIPAA Privacy Rule requirements to determine compliance with each section of the Rule. We also review the organization’s breach notification process and policies against the HIPAA Breach Notification Rule and the Health Information Technology for Economic and Clinical Health (HITECH) Act.

HIPAA Policy, Procedure, and Form Development

Having a full set of HIPAA policies, procedures, and forms is essential for compliance with the Privacy Rule. Securance can help your organization develop policies, procedures, and forms to suit each department that handles PHI.

HIPAA Security and Privacy Training

All employees, regardless of whether they interact directly with PHI and ePHI, should receive proper training in HIPAA security and privacy principles. Securance offers classroom- and computer-based training options, with unique modules for:

  • Standard users

  • Employees who interact with ePHI and | or PHI

  • IT security staff

  • Employees responsible for identifying and reporting breaches


Executive-level consultants provide hands-on leadership to ensure every project is a success.

Senior resources with 20 or more years of experience don’t just lead engagements; they execute them from cradle to grave.

Icon (4).png

We speak two languages, business and IT, and use our fluency to translate technical findings into business risks.

Our reports and recommendations are in plain English, not IT jargon, that all stakeholders can understand and appreciate.

Icon (5).png

Securance is the only IT security firm that uses artificial intelligence to enhance its approach to identifying risks and vulnerabilities.

Our proprietary AI technology predicts security and control failures, compliance gaps, and even data breaches.

Icon (6).png
bottom of page