Healthcare Practitioners
HIPAA-covered dental, psychology, psychiatry, and chiropractic practices.
If your practice creates, receives, maintains, or transmits protected health information, the HIPAA Security Rule applies to you — regardless of the number of clinicians on staff or the size of your patient panel. A solo psychologist and a hospital system are held to the same rule; only the scale of the required program differs.
We build and operate Security Rule programs for small covered entities: risk analyses under §164.308(a)(1)(ii)(A), documented safeguards, business-associate oversight under §164.308(b), and the workforce training and access-management controls that a regulator will expect to see documented.
Program Focus Areas
- Documented risk analyses and risk management
- Administrative, technical, and physical safeguards
- Business-associate agreements and vendor oversight
- Breach-notification readiness under 45 CFR Subpart D
- Workforce training records and access reviews
