• Skip to primary navigation
  • Skip to main content
  • Skip to footer
ControlCase No Tag LOGO md

ControlCase

IT Certifications, Continuous Compliance and Cybersecurity Services Provider

  • Company
    • About Us
    • Careers
    • Locations
    • Team
  • Industries
    • Business Process Outsourcing
    • Cloud Service Providers
    • Retail
    • Telecom | Entertainment
  • Certifications
    • PCI DSS Certification
    • CSA STAR Certification
    • GDPR Assessment
    • HIPAA Assessment
    • HITRUST Certification
    • ISO 27001 Certification
    • FedRAMP 3PAO Services and NIST 800-53
    • CMMC Compliance: NIST 800-171
    • MARS-E Assessment
    • P2PE Certification
    • PA DSS Certification
    • SOC2 Report
  • Solutions
    • Continuous Compliance Solution
    • One Audit
    • Card Data Discovery Software
    • Data Security Rating
  • Testing
    • Application Reviews
    • Application Security Training
    • Code Reviews
    • Card Data Discovery
    • External Vulnerability Scans
    • Firewall Security Reviews
    • Internal Vulnerability Scans
    • Log Monitoring
    • Penetration Testing
  • Resources
    • Events
    • News
    • Webinars
    • Courses
    • Newsletters
    • Blog
  • Contact Us

HIPAA / HITECH Compliance

You are here: Home / Blog / HIPAA / HITECH Compliance

What is PHI
– PHI stands for Personal Health Information.
– Refers to health information that can be tied to an individual.
– When personal health information is combined with any of the following eighteen identifiers, it is considered PHI.

Healthcare Compliance Drivers
1. HIPAA – Federal regulation requiring protection of Protected Health Information
2. HITRUST – Common Security Framework is used to assess security around PHI or other sensitive data.
3. Customer Requirements – Covered entity or other customer requires validation of security controls through their vendor management program.
4. Internal Audit – Internal directive requiring validation of security controls against an industry-accepted security framework.

About HIPAA
The Health Insurance Portability and Accountability Act (HIPAA) and subsequent Health Information Technology for Economic and Clinical Health (HITECH) Act defines policies, procedures, and processes that are required for companies that store, process, or handle electronic protected health information (ePHI). A HIPAA / HITECH attestation report demonstrates that an organization has implemented safeguards to protect sensitive ePHI. HIPAA establishes administrative, physical, technical, security and privacy standards that apply to both healthcare providers and business associates.

ControlCase Solution
ControlCase’s HIPAA compliance methodology is derived from industry (based on ISO 27001 and 27002) standards and has evolved over time to represent the collective experience of ControlCase’ s security professionals’ worldwide in the changing security landscape. The focus of our assessment targets specific security elements that are defined, developed and implemented as part of an organization’s security program.

For more information click here

Or Contact Us to schedule a demo of our solution

Related Blog

Compliance 101: HITRUST Update 2023
Interested in knowing more about HITRUST Certification? Join us via webinar on Thursday Feb 2nd, 2023, as we discuss HITRUST, HITRUST CSF, the HITRUST CSF Assurance Program, and version 11 updates. Presented by ControlCase CSO Kishor Vaswani and HITRUST Partner Omkar Salunkhe.
Compliance 101: Data Protection by Design
Register for our Jan 26th, 2023, Data Protection by Design webinar to discover how your company can establish proactive data protection programs with ease using ControlCase's unique OneAudit™ solution. Presented by ControlCase UK President Ashish Kirtikar.
PCI DSS v4.0 | Webinar
Deep Dive into notable changes: Promote Security as a Continuous Process Increased Flexibility and Customized Approach Increased Alignment between PCI ROC and PCI SAQ Keep up with the security needs of the Payment Industry and landscape (such as MFA/phishing, etc.)
Seminario Web PCI DSS v4.0
Los temas por tocar serían: Cambios incluidos en PCI DSS v4.0 Cambios críticos de PCI DSS v3.2.1 a v4.0 Cambios metodológicos de PCI DSS v3.2.1 a v4.0 Nuevos requerimientos que podrían necesitar un mayor esfuerzo en la implementación Desde la perspectiva de Latam
CMMC Compliance Webinar
In this 45 minute webinar ControlCase will discuss the following: What is CMMC 2.0? Who does CMMC 2.0 apply to? What is the accreditation body (CMMC-AB)?
SOC 2 Compliance and Certification | Webinar

About Us

ControlCase is a global provider of technology-driven compliance and security solutions. ControlCase is committed to partnering with clients to develop strategic information security and compliance programs that are simplified, cost effective and comprehensive in both on-premise and cloud environments.

ControlCase provides the best experts, customer experience and technology for regulations including PCI DSS, GDPR, SOC2, HIPAA, ISO 27001/2, CCPA, SWIFT, Microsoft SSPA, CSA STAR, SCA, PA DSS, PCI P2PE, PCI PIN, PCI 3DS, PCI Secure Software, PCI Secure SLC.

https://www.controlcase.com

  • Facebook
  • LinkedIn
  • Twitter
  • YouTube

Footer

Connect

Corporate Headquarters
12015 Lee Jackson Memorial Hwy, Suite 520, Fairfax, VA 22033

Send us a message

Call Us

About Us

ControlCase is a United States based company, headquartered in Fairfax, Virginia with locations in North America, Europe, Latin America, Asia/Pacific and the Middle East to serve our clients globally.

Quick Links

  • Company
  • Team
  • Careers
  • Locations
  • Covid-19 Notice

Certifications, Assessments and Reports

  • PCI DSS Certification
  • CSA STAR Certification
  • GDPR Assessment
  • HIPAA Assessment
  • HITRUST Certification
  • ISO 27001 Certification
  • FedRAMP and 3PAO Services
  • MARS-E Assessment
  • P2PE Certification
  • PA DSS Certification
  • SOC2 Report

© ControlCase LLC 2023 | Privacy Policy | Impartiality Statement | Legal Notices