Related Links

HITRUST, a data protection standards development and certification organization announced a major feature enhancement to its information risk management platform, HITRUST MyCSF, that significantly streamlines how organizations capture and present regulatory compliance evidence.

HITRUST also introduced a new, no-cost Regulatory Assistance Center to further support organizations with a HITRUST CSF Certification as they prepare for and undergo regulatory audits.

Compliance and Reporting Pack feature

Both the new Compliance and Reporting Pack feature for HITRUST MyCSF and the new Regulatory Assistance Center initially focus on the Health Insurance Portability and Accountability Act (HIPAA), expanding into other regulations in the future.

The Compliance and Reporting Pack collects specific information that is required to comply with HIPAA A and is regularly requested during audits. Within the HITRUST MyCSF platform, the information is automatically consolidated into a compliance report formatted by HIPAA control and populated with evidence and documentation that can be shared directly with investigators.

Risk management and compliance objectives

We continue to help our customers achieve their objectives as efficiently and effectively as possible"

Organizations look to HITRUST to help them manage information risk, maintain regulatory compliance, and for reporting to third parties,” said Jeremy Huval, Chief Innovation Officer, HITRUST.

We are always listening to customers and providing more resources to further streamline these processes, and most importantly, continue to help our customers achieve their information risk management and compliance objectives as efficiently and effectively as possible.”

HIPAA compliance initiatives

More than 80 percent of U.S. hospitals, 85 percent of U.S. health insurers, and many other covered entities and business associates leverage the HITRUST Approach to aid their HIPAA compliance initiatives.

As the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) pursues its responsibility of enforcing HIPAA Rules, OCR investigations include requests for specific documents and evidence of compliance.

HITRUST CSF Certification

HITRUST’s HIPAA compliance reporting feature will reduce the effort and burden in responding to HIPAA-related inquiries"

Having supported numerous organizations leveraging their HITRUST CSF Certification for use in OCR investigations, HITRUST’s new HIPAA compliance reporting feature will significantly reduce the effort and burden in responding to HIPAA-related inquires,” said Robert J. Hudock, Partner, King & Spalding LLP.

The report output can be given directly to investigators in a format that is clear and easy to understand.” The HITRUST Compliance and Reporting Pack for HIPAA will be available to all HITRUST MyCSF subscribers, effective March 2021.

HITRUST Regulatory Assistance Center

The new HITRUST Regulatory Assistance Center (the “Center”) will aid organizations that have a HITRUST CSF Certification and are preparing for or undergoing a regulatory audit.

This no-cost assistance includes guidance on how a HITRUST CSF Assessment Report can and should be leveraged to demonstrate compliance, including how specific requirements are met or how best to respond to requests.

HITRUST CSF Assurance Program

Center is a centralized resource that is focused on providing up-to-date assistance and communication

Although HITRUST regularly responds to inquiries, the Center is a centralized resource that is focused on providing up-to-date assistance and communication to HITRUST CSF Certified organizations and their advisors.

The Center is staffed with security and privacy professionals, attorneys, and other experts familiar with the HITRUST CSF, HITRUST CSF Assurance Program, and HIPAA regulations. Organizations with a current HITRUST CSF Certification can start engaging with the HITRUST Regulatory Assistance Center.

Security assurances

We’re delighted to see continued innovation from HITRUST which not only helps us regarding HIPAA compliance, but improves our internal processes for implementing and providing security assurances,” said Devin Shirley, Chief Information Security Officer, Arkansas Blue Cross, and Blue Shield.

HITRUST helps us demonstrate that we have the highest standards for managing risk, improving security, and achieving compliance requirements.”

Resources

  • Upcoming Webinar – HITRUST, together with King & Spalding LLP, will host a webinar on January 12, 2021, to provide insights on how organizations can position themselves advantageously from a legal perspective when it comes to HIPAA compliance and regulatory investigations. The webinar will also highlight new resources and capabilities from HITRUST. Register to attend here.
  • The HITRUST Approach to HIPAA Compliance – Organizations interested in understanding the HITRUST Approach to HIPAA Compliance can download a free guide, available today on the HITRUST website. While HITRUST MyCSF streamlines and automates compliance reporting, the guide helps organizations better understand HITRUST controls as they relate to HIPAA’s Security and Breach Notification Rules.

Discover how AI, biometrics, and analytics are transforming casino security

Related videos

Insta DomainLink Secret™

Insta DomainLink Secret™
Wan 2.2-S2V Demo Video: Female Singer

Wan 2.2-S2V Demo Video: Female Singer
Dahua MultiVision Online Event - Look Wider, Protect Deeper

Dahua MultiVision Online Event - Look Wider, Protect Deeper

In case you missed it

What Are Emerging Applications For Physical Security In Transportation?
What Are Emerging Applications For Physical Security In Transportation?

Transportation systems need robust physical security to protect human life, to ensure economic stability, and to maintain national security. Because transportation involves moving...

Gallagher's Perimeter Solutions With Fortified Partnership
Gallagher's Perimeter Solutions With Fortified Partnership

Global security manufacturer Gallagher Security is proud to announce a strategic partnership with Fortified Security, a pioneering perimeter systems integrator with over 30 years o...

Genetec's Role In Data Sovereignty For Security
Genetec's Role In Data Sovereignty For Security

Genetec Inc., the global pioneer in enterprise physical security software, highlights why data sovereignty has become a central concern for physical security leaders as more survei...

Featured white papers
The Key To Unlocking K12 School Safety Grants

The Key To Unlocking K12 School Safety Grants

Download
Honeywell GARD USB Threat Report 2024

Honeywell GARD USB Threat Report 2024

Download
Physical Access Control

Physical Access Control

Download
The 2024 State Of Physical Access Trend Report

The 2024 State Of Physical Access Trend Report

Download
The Security Challenges Of Data Centers

The Security Challenges Of Data Centers

Download
More corporate news
ISS Announces Strategic Alliance With Captis Intelligence For Face-Matching System Connected To The Exclusive Captis Database

ISS Announces Strategic Alliance With Captis Intelligence For Face-Matching System Connected To The Exclusive Captis Database
Bitglass Awarded U.S. Patent No. 10,855,671 For Fundamental Invention In Transparent, Contextual Access Control Of Cloud Services

Bitglass Awarded U.S. Patent No. 10,855,671 For Fundamental Invention In Transparent, Contextual Access Control Of Cloud Services
Check Point Releases A New Survey To Highlight Security Strategies Forced By The COVID-19 Pandemic

Check Point Releases A New Survey To Highlight Security Strategies Forced By The COVID-19 Pandemic
Featured products
Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)

Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)
Hanwha Vision OnCAFE: Cloud-Based Access Control for Modern Enterprises

Hanwha Vision OnCAFE: Cloud-Based Access Control for Modern Enterprises
Delta Scientific MP100 Portable Barricade Solution

Delta Scientific MP100 Portable Barricade Solution