HIPAA Privacy Program Assessment

Identify and remediate compliance gaps. Reduce enforcement risks by verifying compliance.


Our HIPAA Privacy Program Assessment is designed to evaluate how your organization implemented the HIPAA Privacy and Breach Notification Rules by providing a complete and thorough gap analysis and recommendations for remediation.

This service is a thorough, in-depth review of your privacy program’s current state; identification of any gaps in compliance or best practices; and recommendations based on regulatory requirements for remediation and improvement.

Upon completion of the assessment, we provide a comprehensive report of findings and present it to key stakeholders in an educational workshop. Ultimately, the goal of this assessment is to help you prioritize privacy program efforts to effectively reduce risks and address compliance requirements.

Key Benefits


Reduce Risk

Assessing your organization’s compliance efforts may reduce enforcement actions and verifies that you’re engaging in best practices.


Identify Gaps

Our assessment methodology is designed to identify gaps in policies, procedures, practices, or processes and provide recommendations so you can remediate the gaps.


Safeguard Health Information

Keeping your patients’ health information private is of utmost importance. The assessment is designed to verify that health information is being handled according to regulations and industry best practices. 


Subject Matter Expertise

HIPAA Privacy Program Assessments are performed by seasoned privacy professionals with deep subject matter expertise, so you’re getting in-depth and vertical-specific insights.

Having a partner that is actively monitoring our systems, trends, local and global threats not only saves the Virtua IT Security team time, but provides us with the ability to proactively look at potential threats to plan accordingly. The partnership with CynergisTek has allowed us to focus on compliance, developing risk programs, policy and procedures leading to a culture focused on making us more secure.

Tom Gordon

CIO, Virtua

Security has become a necessary and critical strategic pillar for our organization, and it is too broad and complex for a provider organization to keep up with on their own. Having a partner like CynergisTek with depth and breadth of knowledge and expertise is a crucial asset for our organization. I can’t imagine navigating these issues without them.

John Mangona

Vice President, Chief Information & Compliance Officer, Saratoga Hospital

CynergisTek’s social engineering and phishing service was an excellent training tool for our organization. A third-party assessment of how our policies and procedures would stack up against a real threat was eye-opening and provided us with valuable information we can leverage to continue to enhance our security posture.

Joe Egan
Director of Information Security, Valley Children’s Hospital

We just had our Incident Response exercise and I wanted to let you know that I have received a lot of positive feedback from all participants including our Executives and Board Members. Everyone was impressed at how the exercise was well-prepared and conducted. Obviously, it goes to your leadership. You were able to relate to all participants, ask the right questions, and in general keep the exercise going forward. You did a great job! Thank you so much CynergisTek!

Francois Bodhuin
DirTechnology Director – ISO at Inspira Health Network


The goal of the HIPAA Privacy Program Assessment is to identify compliance gaps and provide recommendations, guidance, and best practices to remediate gaps. Additionally, you may reduce enforcement risks by verifying that you’re in compliance with regulations, and you’ll gain insight into how your organization is handling health information.

Get Started with CynergisTek Today

Be Ready. Be Resilient. Validate

Subscribe to our newsletter