Performing an assessment is a pivotal step in determining if the research enterprise of an organization is appropriately using and disclosing PHI in compliance with HIPAA Privacy and Security Rules.
A comprehensive HIPAA Research Program Assessment performed by our highly trained compliance professionals will review research related documents, processes and procedures impacting research activities to identify possible gaps. At the conclusion of the assessment, you will receive a thorough report including guidance on industry best practices to improve privacy, security and trust of the research program.
The scope of documents for review include, but is not limited to:
- Policies and Procedures Demonstrating Compliance with the HIPAA Privacy, Security, and Breach Notification Rules
- Policies and Procedures of non-HIPAA Documentation
- Policies and Procedures for Reporting, Assessment and Mitigation of Unauthorized Use or Disclosure of PHI
- Human Resource/Personnel Documents
- Training Documentation