HIPAA Privacy

The compliance date for the HIPAA Privacy Rule has long since come and gone, but Privacy Rule compliance continues to be a daily adventure for covered entities and business associates alike. Moreover, the enactment of HITECH raises new challenges for covered entities and their business associates. We are here to help.

We offer a variety of HIPAA Privacy services, including:

  • Privacy audits
  • Examining how the Privacy Rules affects specific scenarios as they arise
  • Reviewing your health information privacy policies for continued relevance
  • Assisting clients with internal investigations in response to OCR privacy investigations
  • Assisting clients with responding to state privacy investigations
  • Business associate contract management
  • Workforce training
  • Performing privacy compliance program "check-ups"

Services for HIPAA (English)

Services for HIPAA (Spanish)

HIPAA Security

The HIPAA Security Rule mandates the implementation and maintenance of administrative, physical and technical safeguards as well as certain structural organizational requirements for covered entities.  HITECH expands the application of those provisions to business associates.  

Our consultants have conducted over 60 HIPAA Security reviews and have developed a cost-effective and efficient method to assist clients in auditing for compliance.

We offer the following HIPAA Security services:

  • Conduct compliance audits
  • Perform independent risk assessments
  • Assist clients in developing self-assessment tools
  • Develop remediation plans to fill gaps found in assessment
  • Development of "Best Practices Manual" for multi-facility clients
  • Assist client in documenting necessity for alternative implementation measures for addressable specifications


Aegis Compliance & Ethics Center, LLP works with clients large and small to develop cost-effective health information privacy and security compliance solutions.

When the Health Insurance Portability & Accountability Act of 1996 ("HIPAA") became law, very few people realized it would have such a broad effect on health care providers some nine years later. HIPAA implementation and enforcement has come in waves  and the consultants at Aegis Compliance & Ethics Center, LLP have been out in front helping providers, health plans, and business associates implement HIPAA  and maintain HIPAA compliance throughout HIPAA's staggered compliance dates.

On July 20, 2010, Aegis Compliance & Ethics Center presented a webinar on the the proposed modifications to the HIPAA Privacy, Security and Enforcement Rules. You can download a recording and the slide presentation from that webinar below.

HITECH 2010 Proposed Rules Webinar - Slides (July 20, 2010) HITECH 2010 Proposed Rules Webinar - Slides (July 20, 2010) (453 KB)

HITECH 2010 Proposed Rules Webinar (July 20, 2010) HITECH 2010 Proposed Rules Webinar (July 20, 2010) (24240 KB)