Resource:

Cressey & Company

Case Study

Challenge: Care Continuum  Clinical Integration  Financial Sustainability  

Content provided by AHA Endorsement partner: Clearwater Compliance

Learn how Clearwater completed a high-level assessment, formulated a strategic plan and delivered on the established priorities while minimizing distraction of the Company’s workforce.


At a Glance:

  • Private-equity majority-owned data analytics portfolio company serving the post-acute provider space
  • Laser-focused mission: to raise the bar in post-acute care nationwide on healthcare operations performance
  • Enhancing patient outcomes and tracking patient experience through proprietary algorithms and industry benchmarking

Challenges:

  • To ensure compliance with HIPAA Privacy, Security and Breach Notification regulations before sale of company
  • To meet growing customer contractual requirements as a Business Associate to major national Covered Entities
  • To identify and remediate all potential privacy, security and compliance risks and liabilities
  • To accomplish all objectives with minimal organizational impact to enable company staff to focus on growth

Clearwater Compliance Solutions:

  • Completed Clearwater HIPAA Compliance 10-Point Strategic Assessment™ and Strategic Plan
  • Determined applicable Privacy Rule requirements with Clearwater BA Privacy Rule Determination™ evaluator
  • Conducted HIPAA Security, Privacy & Breach Notification Assessments using Clearwater WorkShop™ process and software
  • Conducted rigorous HIPAA Security Risk Analysis using Clearwater software
  • Provided expert Interim Privacy & Security Officer services to expedite program implementation and results

 

RESULTS AND VALUE ADDED:

 

  • Identified enhancements to compliance and security programs
  • Prioritized and rapidly executed roadmap
  • Strengthened policies and procedures and updated training materials
  • Completed the HIPAA Security Rule requirement to conduct a rigorous compliance assessment
  • Completed the HIPAA Security Rule requirement to conduct a rigorous risk analysis
  • Established a plan for ongoing monitoring and reporting activities including annual assessments
  • Bottom Line: Made HIPAA Compliance a non-issue, thereby facilitating successful sales transaction