In the United States, healthcare is one of the most heavily regulated industries. Under the Health Information Portability and Accountability Act (HIPAA), covered entities are required to protect the confidentiality, integrity, and availability of their Patient Health Information (PHI).
The last few years have seen media headlines of healthcare data breaches affecting millions of individuals. The costs to those organizations affected have been in the millions of dollars in fines and other costs. Even a small breach can cost hundreds of thousands of dollars. The US Department of Health and Human Services (HHS) and the Office of Civil Rights (OCR) have begun the process of conducting audits on covered entities.
The HIPAA Security Rule is made up of Administrative, Physical, and Technical safeguards that require covered entities to have the security controls in place needed to protect the confidentiality, integrity, and availability of PHI. Working together, Kodiak’s IT and security professionals have developed a comprehensive HIPAA compliance and IT security program.