HIPAA Compliant

HIPAA Compliance Made Easy by Drake Hardware & Software

eGestalt SecureGRC is a unified security monitoring and compliance management solution provided by Drake Hardware & Software. Being a cloud service means SecureGRC is continually updated with the latest versions and revisions of every Act. Cloud delivery also means no hardware investment, and the assurance that your compliance solution is future-proof! HIPAA & HITECH support is built-in, easily extended by plug-ins, and kept completely up-to-date.

Breakthrough Technology at Breakthrough Pricing

SecureGRC is a cloud-based service that eliminates the need for outsourced expertise and most manual processes. SecureGRC by Drake Hardware & Software delivers increased compliance control at a dramatically reduced cost.

SecureGRC Compliance Manager Features:

• Continuous Compliance.
• Unified Security and Compliance management solution in a single application.
• Completely cloud-based with no hardware or software investments required.
• Single and centralized repository for all compliance related data.
• Display questionnaires to evaluate manual controls.
• Compliance activity e-mail reminders.

The HITECH Act

Introduction of the HITECH Act as part of the American Recovery and Reinvestment Act of 2009 made incentives available to promote rapid adoption of Electronic Medical Record keeping (EMR).

Legal Implications

Along with those incentives come significantly increased criminal penalties for non-compliance. These penalties are not only directed at the healthcare entity, but also at the individual owners, employees and business associates of any covered entity. Your state's Attorney General can and will investigate and prosecute. Fines have been increased dramatically and, yes, people can even go to jail.

Dramatically Reduced Cost

End-to-end automation eliminates highly priced manual procedures reducing costs by as much as 90%. SecureGRC by Drake Hardware & Software provides all the documentation required for an audit automatically, on demand. It also significantly reduces expensive errors frequently introduced by manual processes. Dependence upon expensive external experts can create an environment of sudden panic when an audit is scheduled. Secure, thorough, automated control creates a culture of calm, continuous compliance.

You are affected?

Physicians, Dentists, Chiropractors, Occupational Therapists, Psychologists, Nursing Care or any business that handles Protected Health Information (PHI), from a sole practitioner to small medical groups, are required to achieve and maintain compliance with the regulations set forth in both the HIPAA and HITECH Acts.

You must:

• Possess, maintain, and demonstrate that you have established and utilize documented information handling processes.
• Have written agreements and proof of compliance from all Business Associates and subcontractors handling PHI.
• Ensure that appropriate controls and safeguards have been implemented to prevent unauthorized access and disclosure of sensitive patient data.

A Managed Compliance Provider

As an eGestalt Managed Compliance Provider Drake Hardware & Software will quickly and professionally implement an automated solution to enable efficient identification and management HIPAA and HITECH related risk. Use SecureGRC Compliance Manager to keep constant vigil over systems and staff, and to assure continuous compliance.