HIPAA Compliance

  • Roz Cordini, JD, MSN, RN, CHC, CHPC

    Roz Cordini, JD, MSN, RN, CHC, CHPC

    Senior Vice President

  • Deann Tucker, MHA, RHIA, CHPS, CHPC, CCS

    Deann Tucker, MHA, RHIA, CHPS, CHPC, CCS

    Senior Manager


Are you tired of the never-ending complexities and constant changes surrounding HIPAA compliance in the healthcare industry? You’re not alone! HIPAA compliance is like a labyrinth, with rules and regulations that seem to shift like quicksand, leaving healthcare organizations and business associates feeling overwhelmed and at risk.

The Health Insurance Portability and Accountability Act (HIPAA) of 1996 is divided into three primary rules: Privacy, Security, and Breach Notification. The rules are not just complex; they are a minefield of legal requirements and potential pitfalls. Failure to navigate this complex terrain can result in severe consequences, including hefty fines, damaged reputation, and legal action.


Privacy 45 CFR 164. 500

The Privacy Rule established protection for protected health information whether in paper or electronic format. The rule defines patient rights that provide some control over their own health information and establishes standards regarding access, use and disclosure.


Security 45 CFR 164.302

The Security Rule established requirements for electronic protected health information. In general, the rule outlines administrative, technical and physical safeguards that must be addressed by covered entities and business associates.


Breach Notification 45 CFR 164.400

The Breach Notification rule established detailed standards requiring covered entities to report breaches to impacted patients.


Enter Coker, your trusted partner in conquering the HIPAA compliance challenge. Our team comprises seasoned experts who have been in the trenches of healthcare compliance. We offer a designed to ease your HIPAA compliance burdens and let your organization thrive in the face of these regulations.


Security Risk Analysis (SRA)

A meticulous examination of potential risks and vulnerabilities to electronic protected health information, ensuring the confidentiality, integrity, and availability of your data.

Proven Office for Civil Rights investigation and corrective action support

Whether you’re in the midst of an investigation or need guidance on a corrective action plan, we provide unwavering support.


405 (d) Audit Services

Identifying and documenting your implemented security best practices to ensure HIPAA compliance.


Risk Management and Policy Development

  • Vendor Risk Management framework and program development
  • Information Asset Criticality/Business Impact Analysis
  • HIPAA Privacy, Security, and Breach Notification Policy and Procedure Development


Privacy and Security Assessments

Privacy Assessment aligned with the Office for Civil Rights desk audit protocol, including a compliance and gap analysis.

Security Assessment following the National Institute of Standards and Technology (NIST) Cybersecurity Framework.


Training and Education

  • Phishing simulation
  • Privacy Officer and/or Security Officer training program designed to establish foundational knowledge for new executives


Infrastructure Evaluation

Evaluation of entire IT infrastructure security, covering servers, computers, laptops, firewalls, remote access, EHR/Practice Management systems, wireless access, and more.

Vulnerability Scanning to provide network visibility and identify potential risks and vulnerabilities exploited by threat actors.


Business Associate Support

  • Evaluation of your business associate agreement template and process.
  • Assistance in creating a comprehensive list of all business associates for tracking and compliance monitoring.


Cyber Liability Insurance Guidance

Guidance on acquiring cyber liability insurance to protect your organization against unforeseen data breaches and cyber threats.


Don’t let HIPAA compliance confusion hold you back. Take action now and partner with Coker to secure your healthcare business and avoid the potentially devastating consequences of non-compliance.


Contact us today and regain control of your healthcare organization’s compliance journey.

Don’t wait – act now to safeguard your future!

Questions? Ask an expert!

    Contact us today for more information about our healthcare consulting services and learn how we can help your organization.

    Contact Us