IT Governance & Compliance

We have the tools to keep your Business Up-To-Date

HIPAA Compliance

HIPAA (Healthcare Insurance Portability Accountability Act) was passed by Congress in 1996. HIPPA-Compliant_logoThis healthcare act provides the ability to transfer and continue health insurance coverage when they change or lose their jobs.  HIPAA also does the following:

  • Reduces health care fraud and abuse
  • Mandates industry-wide standards for health care information on electronic billing and other processes
  • Requires the protection and confidential handling of protected health information.

The second part of the HIPAA privacy act requires health care organizations, as well as their business associates, develop and follow procedures that ensure the confidentially and security of protected health information (PHI) when it is transferred, received, handled or shared. This applies to all hipaa_diagramforms of PHI, including paper, oral, and electronic, etc. Additionally, only the minimum health information necessary to conduct business is to be used or shared.

DHCS has a privacy office that oversees compliance on all state and federal privacy laws, including HIPAA.

Cyberdyne Business Systems understands the regulation requirements and can help your business become compliant prior to an inspection. We analyze your business by conducting analysis through auditing your current policies and procedures. We then recommend the necessary compliancy changes necessary to keep your business operating within the HIPAA requirements. Call us for a free consultation.

Sarbanes Oxley

Sarbanes Oxley is also known as the Public Company Accounting Reform and Investment Protection Act (Senate) and “Corporate and Auditing Accountability and Responsibility Act” (in the House) or “SOX”.

SOX is a United States federal law that set new or expanded sox_chartrequirements for all U.S. public company boards, management and public accounting firms. There are also a number of provisions of the Act that also apply to privately held companies. Your IT infrastructure is impacted and bears much of the weigh imposed by SOX to improve governance and accountability. SOX is not a set of business practices, nor does it imply how a business should store its records rather, it defines which records should be stored and for how long. SOX states that all business records,  including electronic records and electronic messages, must be saved for “not less than five years”. It is also, for example, a violation of the SOX act to willfully destroy evidence that impedes a Federal investigation. The seriousness of violation of the SOX act for non compliance can result in fines, imprisonment or both. Today’s IT departments must archive electronic corporate records and must do so in a cost efficient manner.   There are three rules that pertain specifically to your IT department. These rules are:

 

  • Destruction, alteration and or falsification of records,
  • The designated retention period of records storage
  • Types of business records that need to be stored, including all business records and communications, including electronic communications

Cyberdyne Business Systems works seamlessly with our certified Sarbanes Oxley business partners to help your enterprise review its records practices. Through close collaboration with our partners, we make sure your business has the right procedures in place to stay SOX compliant. Please give us a call if you have questions or need assistance with these important regulation requirements.