AssurX Receives HIPAA and HITECH Compliance Type 1 Attestation
Morgan Hill, CA – August 8, 2018 – AssurX,Inc. (AssurX), a leading provider of enterprise quality management and regulatory compliance software, today announced the recent completion of its Type 1 Attestation (AT-C 105 and AT-C 201) for compliance with the Health Insurance Portability & Accountability Act (HIPAA) Security Rule and the Health Information Technology for Economic and Clinical Health (HITECH) Act. The examination was conducted by independent auditing firm A-Lign.
The attestation affirms AssurX’s commitment to protecting customers’ electronic information with systems and safeguards designed to protect confidential or sensitive data.
The Health Insurance Portability and Accountability (HIPAA) Security Rule standard sets guidelines for protecting individual electronic protected health information (ePHI) with appropriate administrative, physical and technical controls and safeguards. Subtitle D of the HITECH Act addresses the privacy and security concerns associated with the electronic transmission of health information, in part, through several provisions that strengthen the civil and criminal enforcement of the HIPAA rules.
AssurX performed rigorous risk assessments and implemented comprehensive controls to safeguard endpoint security, physical security and encryption of customer data (cloud-based OnDemand solution).
AssurX uses the powerful built-in capabilities of its own QMS platform to manage all HIPAA processes. “We used the flexibility of AssurX software to document, assess risk, track, and monitor our system safeguards for protected information,” said Tamar June, President and CEO of AssurX. “AssurX’s information security initiatives should instill confidence in our current and prospective customers that we place an extremely high priority on the protection of their data and information.”
Sustaining compliance makes it possible for any company that must comply with HIPAA/HITECH regulations to enter confidently into a business associate agreement (BAA) with AssurX to assure all parties meet all requirements.
AssurX’s HIPAA/HITECH compliance controls include ongoing management and attestation of the health information security program, training for all employees across the organization relevant to their involvement with ePHI and ongoing cybersecurity training.
AssurX, Inc., provides regulated organizations with a configurable Quality Management System (QMS) that improves quality and compliance, streamlines workflow and controls risk. With a choice of cloud or on-premise software licensing options, AssurX’s flexible, integrated system automates quality and compliance processes so issues can be centrally managed. AssurX spans across every department in the enterprise, encompassing the entire product lifecycle, and providing a comprehensive quality management software solution for highly regulated and ISO compliant manufacturers. More information is available at www.assurx.com.
AssurX Media Relations
Office: (408) 778-1376, x794