The approach to every client engagement is to find a practical path to dealing with compliance issues and present alternatives that meet client objectives.
Techniques may include research of not only the regulations, but review of the proposed rules, public comment and regulators response. This process allows a better understanding of the regulators intent and in turn, client options to implement privacy and security requirements.
On the security side, the National Institute of Standards and Technology (NIST) Risk Management Framework is just one of many technical reference used to ensure a structured yet flexible approach for risk management review.
As an independent consulting firm, HIPAA Analytics represents only the interests of the client. HIPAA Analytics does not sell or represent any products or services, or receive commissions from any source.
HIPAA Analytics works as a team with each client, and strive to be an extension of their operations, clearly understand their intentions and desires and execute them in a timely and cost effective manner.
HIPAA Analytics supports a constant exchange of information with every client, sharing what is learned on other projects and offering those ideas, plus coaching as a part of each engagement.
Finally, HIPAA Analytics is committed to the HIPAA privacy and security profession and present regularly in conferences, seminars and work groups, without charge.