Your organization is ultimately responsible for safeguarding Protected Health Information (PHI). Performing due diligence on vendors who will have access to your patient’s PHI is critical. There are significant penalties associated with breaches of PHI, including fines for non-compliance, the costs of notification in the event of a breach of PHI, and the potential for reputational damage.
Vendor security risk management has become increasingly important to healthcare organizations. With the finalization of the HIPAA Omnibus, vendors are now directly subject to HIPAA security requirements. Healthcare organizations will benefit from an efficient and cost-effective service that provides critical support to their risk management program for third-party oversight.