Information Technology and Infomation Security Consultants

Call PCSS @: 720-990-7556 

Contact PCSS today to learn more about our HIPAA-HITECH Compliance services 720-990-7556.

HIPAA-HITECH Rules Compliance

PCSS provides comprehensive support for implementing the four HIPAA-HITECH Rules.  PCSS’s process is to help the client ascertain where they are with HIPAA Rules compliance, and then to develop a comprehensive plan to reach compliance.  PCSS specializes in working with small to mid-sized health care providers and works hard to keep costs down with low-cost solutions.  PCSS recognizes that the significant increase in HIPAA Security requirements can be a significant financial burden on smaller offices and organizations.

Security RuleMost of the time and effort required to be in compliance with the HIPAA-HITECH Rules is associated with this rule.  PCSS provides all the services necessary to meet all three types of security controls: Administrative, Physical and Technical.  These services include:​

  • Gap Analysis
  • Risk Assessment
  • HIPAA Security Plan
  • Facility Security Assessment & Plan
  • Security Awareness Training
  • Business Continuity Plan
  • Compliance Assessment
  • Penetration Testing and Vulnerability Scanning
  • Policies and Procedures

Privacy Rule: PCSS incorporates most of the Privacy Rule items into the Security Rule implementation which helps ensure a comprehensive solution at a lower cost.  An example of this is including breach notification in the Security Rule incident response implementation.

Enforcement Rule: While others may overlook the Enforcement Rule since this is normally responsibility of the Department of Health and Human Services Office of Civil Rights, the best way to mitigate enforcement actions, is to understand what enforcement entails and to include items to address enforcement in your program.  PCSS helps mitigate enforcement action by ensuring that a strong security program is in place including Incident Response and Security Awareness.

Breach Notification Rule:  For Breach Notification Rule compliance PCSS includes the Breach Notification requirements directly in the Incident Response Plan including reporting requirements, who and when to contact, and then ensures that the Assigned Security Person is knowledgeable of the requirements and can act quickly.  The best way to mitigate a breach, and to minimize the impact, is to have a predefined action plan that is implemented swiftly and decisively.  PCSS makes sure that their clients are prepared.

PCSS provides a cost effective method for reaching HIPAA compliance with a program that implements these four HIPAA rules simultaneously. 

#div2{ background-image:url(; height:180px; width:300px; border: 1px solid red; }