DMA Tech Solutions (DMA) announced today its partnership with PCIHIPAA, a leading Payments Card Industry (PCI) and HIPAA compliance provider. The partnership is focused on protecting DMA clients from the onslaught of ransomware attacks, HIPAA violations, and data breaches impacting medical and dental practices throughout the United States. Under HIPAA’s Security and Privacy Rules, healthcare providers are required to take proactive steps to protect sensitive patient information. The partnership comes on the heels of an important announcement surrounding HIPAA compliance regulation. The Director of the U.S. Department of Health and Human Services’ Office for Civil Rights recently stated, “Just because you are a small medical or dental practice doesn’t mean we’re not looking and that you are safe if you are violating the law. You won’t be.” In addition, according to the HHS website, just recently a Ohio healthcare provider had 42,625 patient records stolen. Protected Health Information (PHI) continues to be under attack as hackers strive to monetize the stolen data on the dark web.
“DMA Tech Solutions has been providing state – of- the – art IT solutions to healthcare providers for years. Now, it is more important than ever for DMA to take a leadership role in helping our clients make patient data privacy and security a top priority. We vetted many HIPAA compliance providers and believe PCIHIPAA’s OfficeSafe Compliance Program is the right solution for our clients. Our partnership adds another layer of protection for our clients. It’s easy to implement and I’m confident our clients will experience savings, convenience and peace of mind.” said Jeff Suglio, President, DMA Tech Solutions.
According to the U.S. Department of Health and Human Services, OCR has received over 150,000 HIPAA complaints following the issuance of the Privacy Rule in April 2003. A rising number of claims filed under HIPAA in recent years have led many patients to question whether or not their personal payment and health information is safe. As the government has become more aggressive in HIPAA enforcement, large settlements have become widespread and rising penalties for HIPAA non-compliance are a reality. According to HHS.gov, the types of HIPAA violations most often identified are:
1) Impermissible uses and disclosures of protected health information (PHI)
2) Lack of technology safeguards of PHI
3) Lack of adequate contingency planning in case of a data breach or ransomware attack
4) Lack of administrative safeguards of PHI
5) Lack of a mandatory HIPAA risk assessment
6) Lack of executed Business Associate Agreements
7) Lack of employee training and updated policies and procedures
“We are excited to be working with Jeff, Sam and everyone at DMA Tech Solutions. They have a proud history of providing IT solutions for growing practices. If Equifax can get breached so can a healthcare provider. We find that many practices don’t have the resources to navigate HIPAA law, and are unaware of common vulnerabilities. We’re excited to add the OfficeSafe Compliance Program to DMA’s extensive suite of services. We invite every member to conduct a complimentary Self-Assessment to quickly identity key vulnerabilities in their practice.” said Jeff Broudy, CEO of PCIHIPAA.
DMA Tech Solutions
DMA understands the need for a comprehensive approach. They employ a team of dedicated, highly skilled IT professionals that work with healthcare providers to determine specific needs, and then incorporate the latest technology into an integrated system that accommodates future growth. They also provide continued project management to ensure optimum digital operations and integration within all types of practices.