Our Difference

Our approach to every client engagement is to find a practical path to dealing with compliance issues and present alternatives that meet client objectives.

Our techniques include research of not only the regulations, but review of the proposed rules, public comment and regulators response. This process allows a better understanding of the regulators intent and in turn, client options to implement privacy and security requirements.

On the security side, we use the National Institute of Standards and Technology (NIST) Risk Management Framework, a structured yet flexible approach for risk management review. We also use NIST for guidance during audits, following NIST’s Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule.

We are independent consultants; we represent only the interests of our clients. We do not sell or represent any products or services, or receive commissions from any source.

We work as a team with our clients. We strive to be an extension of their operations, clearly understand their intentions and desires and execute them in a timely and cost effective manner.

We support a constant exchange of information with our clients. We share what we have learned on other projects and offer these ideas, plus coaching as a part of our service.

Finally, we are committed to our profession and present regularly in conferences, webinars, seminars and work groups.