Instead of completing questionnaire after questionnaire, you could become HITRUST-certified. You’re already being scrutinized by organizations about whether your security is up to snuff. While this may seem like a burden, business associates need to think of it from a different perspective. If these business associates are HITRUST-certified, it will round out the healthcare provider’s risk management strategy and allow them to better monitor and evaluate vendors in a more time and cost-effective way. This is a clear call to action that all parties involved in the storage and exchange of private information need to adopt a more universal security framework. Business associates were involved in 277, or about 22 percent, of data breaches since September 2009. and Highmark Inc.) are requiring their business associates to become HITRUST certified within two years.īecause healthcare organizations realize that their business associates play a part in their overall security. Since 2015, an increasing number of HIPAA-covered organizations (such as Anthem, Humana, UnitedHealth Group, Health Care Services Corp. This CSF creates greater security around how entities access, store and exchange private or regulated data. organization that teams up with healthcare, technology and information security leaders to establish a common security framework (CSF). HITRUST stands for the Health Information Trust Alliance, a U.S.
Why would my organization be asked to hold this certification? What does certification even entail? So, you’ve been asked for a HITRUST certification? Odds are, 100 questions are racing through your head.