HIPAA stands for the Health Insurance Portability and Accountability Act, a US law designed to provide privacy standards to protect patients’ medical records and other health information provided to health plans, doctors, hospitals and other health care providers.

These standards provide patients with access to their medical records and more control over how their personal health information is used and disclosed. They represent a uniform, federal floor of privacy protections for consumers across the country. HIPAA took effect on April 14, 2003.

In the UK, private providers that operate in the US must adhere to HIPAA too, but in the public sector the National Health Service has security policies for England, Wales and Scotland. While not law, these policies are aimed at safeguarding patient data and ensuring organisations within the NHS adhere to the Data Protection Act 2018 (DPA).

There is a cross over between the DSP Toolkit, ISO 27001 and HIPAA. So, a start-up MedTech organisation in the UK may decide to adopt of compliance strategy of first submitting DSP Toolkit then gaining HIPAA compliance before moving on to the largest certification which is ISO 27001.

How can you gain HIPAA Compliance

HIPAA shouldn’t be hard, confusing, or expensive.

There’s a simple way to achieve HIPAA compliance, we work with Compliancy Group who provide a compliance software that is made for everyone. From health care providers to business associates, we’ve got you covered.  Let us simplify and automate your HIPAA compliance.

Get in touch to get started…

Get in touch...