The Health Insurance Portability and Accountability Act (HIPAA) mandates that healthcare providers, health plans, hospitals and other covered entities implement comprehensive privacy of protected health information (PHI) of patients. Compliance requirements are becoming increasingly demanding and the chance of an audit is higher than at any prior time.

To help meet HIPAA-HITECH regulatory requirements, Ducara will identify and demonstrate real world threat vectors and provide recommendations to protect data, confidentiality, integrity and availability. Our compliance reviews include a risk analysis to identify a number of controls, threats and vulnerabilities relevant to the HIPAA Security Rule.

Ducara’s experience in healthcare includes hospitals, health plans, laboratories, private practices, and major healthcare systems serving the nation. We understand the liabilities associated with patient health information and our strategies result in robust reports that uncover weaknesses that other information technology audit firms miss.