Download this infographic for the top '5 Things You Should Know About GRC'
Our risk management and healthcare compliance software can help you meet your compliance and security needs.
Manage any federal, state and local compliance regulation.
Manage your assessment and response to the COVID-19 pandemic.
Manage a high volume of third-party vendor risk management programs
Manage by exception with filtering, alerts and notifications – all in a simple user interface.
Mobilize your audit teams with our mobile application free trial.
We focus on information security audits to cover all control standards, identify gaps and deliver a holistic risk mitigation roadmap.
Our healthcare compliance consultants are seasoned subject matter experts who provide unbiased reviews.
We perform both internal and external risk assessments and security audits.
All audit results are delivered in our compliance management software portal, not in a spreadsheet.
Our consultants provide a directive action plan as part of your roadmap.
Managed service providers (MSPs) use our compliance management software to provide general IT and HIPAA services to their clients.
Easily manage a high volume of client audits with a structured tool.
Administer third-party risk management programs.
Manage your clients by exception with extensive filters, automated alerts and notifications.
Provide clients with secure access to their own documents and reports.
"ComplyAssistant’s cloud-based software solution allowed us to efficiently and effectively manage the entire compliance process, from assessment development and distribution through management of action items." --CIO
Gerry Blass – ComplyAssistant President and CEO. Dana Penny – Chief Compliance Officer at The New Jewish Home in New York, NY. In this article, Gerry Blass and Dana Penny walk CISO’s through the process of preparing to pass a spot audit in the June issue of Compliance Today magazine. In the article, Blass and […]
This is a HIPAA Business Associate Agreement / Contract Addendum template for the requirements of the HITECH Act of 2009 in Microsoft Word format. Use it as a starting point and customize to meet the requirements for your business associates agreements.HIPAA Privacy and Security Proactive Audits Tool Kit
Contains recommended HIPAA Privacy and Security audits that your organization should consider implementing for policies & procedures, proactive information system activity review, and facility walk throughs.HIPAA Facility Security Walkthrough Checklist
Excellent guidance for auditing facilities that contain protected health information. Simply check the boxes and write notes as you conduct your walk-through audit.
The world of health information management (HIM) continues to evolve. Larger percentages of information have moved to digital and online. At the same time, more health data is being shared across a wider playing field of public, private, and consumer stakeholders, including a larger virtual workforce. This vast amount of electronic healthcare data now resting in multiple hands raises the bar for health systems’ cybersecurity diligence.Learn How to Bolster Security at your Organization Today
ComplyAssistant’s President and CEO Gerry Blass and Community Options’ Director of Technology Jason Tahaney recently authored an article in HCCA’s Compliance Today magazine titled “How Simplifying your IT Environment can Bolster Security.” The article provided important tips and best practices for CIOs to keep in mind. As the present-day cybersecurity environment continues to be ravaged by hackers and scammers, this article serves as a reminder that sometimes the best tools for mitigating risk are in your own backyard.Mitigate Risk and Improve Security with a DRBC Plan Today
ComplyAssistant President and CEO Gerry Blass recently sat down with Healthcare IT Today Editor and Founder John Lynn to discuss “The Impact of Ransomware on Healthcare Disaster Recovery and Business Continuity and Practical Steps to Improve.” Throughout the conversation, Blass shared his expert advice on why all organizations need a Disaster Recovery Business Continuity (DRBC) plan and offered useful tips for mitigating risks within your organization.
In the 70s and 80s, healthcare organizations started to migrate their patient management information from hardcopy to electronic, either on shared mainframes such as SMS and McAuto or on microprocessors. The user workstations had no intelligence and were known as “dumb terminals.” There were limited locations of electronic identifiable health information. There was no motivation to sell identifiable health information.Information Blocking and the Future of Patient Care: Breaking Down the 8 Exceptions
President and CEO Gerry Blass sat down with Journal of AHIMA senior editor Mary Butler on a recent episode of the Hi Pitch Podcast to talk about the 21st Century Cures Act Information Blocking Final Rule and the eight information blocking exceptions. Blass was joined by attorney Helen Oscislawski, who spoke to the challenges her clients have faced as they prepare to comply with the rule, which goes into effect on April 5th.Breaking Down HICP: Setting the Stage for a Safer World Online
President and CEO Gerry Blass sat down with HIMSS TV host Bill Siwicki on a recent episode of Digital Checkup. This video series features interviews with Bill and healthcare leaders and CEOs that spans a range of topics from leadership, patient access, interoperability, telehealth and more. On this specific episode, Bill asked Gerry about the new Health Information Cybersecurity Practices (HICP) Final Rule and what it means for leaders who are working to strength their organization’s cybersecurity.