Get Started Today!  360-491-2227

croom new

PC Technologies Blog

Understanding the Relationship Between HIPAA and HITRUST

Understanding the Relationship Between HIPAA and HITRUST

HIPAA—the Health Insurance Portability and Accountability Act—is a serious concern for all healthcare providers that operate within the United States, and for good reason! Since August 1996, HIPAA has mandated that these healthcare providers comply with various best practices. While HIPAA is relatively familiar to many people for assorted reasons, fewer know about HITRUST (the Health Information Trust Alliance) and how these acronyms ultimately cooperate with one another.

First, we would be amiss if we didn’t start with what makes them different. HIPAA and HITRUST, contrary to what you may assume, aren’t both regulatory frameworks. HIPAA very much is, but HITRUST is actually an organization that itself developed its own framework (the Common Security Framework, or CSF) that assists businesses in complying with HIPAA, as well as PCI DSS, NIST guidelines, and other regulations.

What is the Health Insurance Portability and Accountability Act?

Signed into law in August of 1996, HIPAA establishes the many requirements that healthcare organizations and their partners must adhere to, with these requirements expanded upon further by the addition of the HIPAA Omnibus Rule that better integrated the demands of the HITECH (Health Information Technology for Economic and Clinical Health) Act.

What Does the Health Information Trust Alliance Do?

HITRUST, as a coalition, works to integrate the tenets of HIPAA into its own CSF. By establishing certain requirements of businesses that align with what HIPAA mandates, the HITRUST CSF makes the portability and accountability act far more actionable.

How Do These Two Acronyms Coexist?

Building on HIPAA, the HITRUST CSF creates a standardized framework and certification process for the healthcare industry to abide by, while also integrating the demands of HIPAA with those passed down by other compliances and frameworks, as we mentioned above. In many ways, HITRUST is therefore the larger challenge to comply with.

Speaking plainly. HIPAA lays out the rules that healthcare providers, organizations, and affiliated businesses must abide by. HITECH gives them the strategies and solutions needed to do so. As a result, both are critically important considerations for any healthcare-affiliated business that wishes to avoid considerable challenges.

Do You Need Assistance in Keeping Your Business Compliant?

There is no shortage of security protocols and protections that assorted businesses in different industries must be cognizant of in order to continue their operations without being subjected to assorted fines. PC Technologies is here to help you and your practice see to it that you are, with all the technical parts handled for you. Find out exactly what our team can put in place for you and assist you in managing by calling 360-491-2227 today.

Hackers Start Beef with JBS Ransomware Attack
Tip of the Week: Properly Manage Your Browser’s Sa...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Saturday, June 19 2021

Captcha Image

By accepting you will be accessing a service provided by a third-party external to

Mobile? Grab this Article!

Qr Code

Latest Blog Entry

Technology is such a wonderful tool for productivity, but one thing that you need to understand is that it cannot work miracles. At the end of the day, we are all still human; distractions creep in that technology cannot prevent. Some users struggle with staying focused, whi...

Latest News

5:01 Surge! After Hours Business Block Party July 29th

Let PC Technologies kick off your 2021 summer with a Business Block Party! Enjoy an evening of networking with the Lacey South Sound Chamber. Attendees can look forward to exclusive raffle items and networking opportunities. This is an after-hours event you won't want to miss!

Read more ...

Account Login