The entire ROI process, as performed by ChartPro, is monitored for:

 
  • Authenticity

  • State/Federal Compliance

  • HIPAA Compliance

  • Validity

  • Legality

Protecting your patients’ health information while processing medical requests accurately and efficiently within the guidelines of the law are fundamental principles of operation for ChartPro.

 
 

Security Risk Management

 

The IT Risk Management Program at ChartPro is a valued resource in minimizing the risk of healthcare record mismanagement.  The ChartPro IT Risk Management Program meets HITECH requirements by incorporating:

 
  • A data classification policy that describes the processes used to identify, classify, store, secure, and monitor access to ePHI data                                        
  • A process to detect a potential data breach and carry out an incident response plan                                                                                                                   
  • A notification process to inform affected parties after the discovery of a breach of security to ePHI without unreasonable delay                                                                                                                                                                                                                              
  • Policies, processes and procedures for security awareness and training

  • Ability to encrypt ePHI data at rest and in transit

 

The ChartPro Security Risk Management Program consists of the following:

Device and media controls

Access control

Mechanism to authenticate ePHI

Person or entity authentication

Breach notification rule

A tight Security Management Process

Security awareness

Security incident procedures

A highly tested contingency plan

Facility access controls

Workstation use policy