855 85 HIPAA (855-854-4722) · 2 days ago · Dollars Paid 3-5 Million CE’S & BA’S 70%+ Are...
Transcript of 855 85 HIPAA (855-854-4722) · 2 days ago · Dollars Paid 3-5 Million CE’S & BA’S 70%+ Are...
Private & Confidential Compliancy Group, LLC. © 2016 1
855 85 HIPAA (855-854-4722) www.CompliancyGroup.com
Private & Confidential Compliancy Group, LLC. © 2016 2
Why HIPAA & Healthcare? § Federal Mandate “LAW” • Heavy Enforcement $20MM in fines YTD
§ 100 % were for incomplete risk assessments
• Reputation & Legal Impact
§ Hot Media Topic • Dr. Oz, Prince, Professional Athletes
§ Health Care Compliance fastest growing sector
$44 B i l l ion
Incentive Dollars Paid
3-5 Mi l l ion
CE’S & BA’S
70%+ Are NOT
Compliant
Private & Confidential Compliancy Group, LLC. © 2016 3
Advantages of CAAS
§ Differentiate your firm “Seal of Compliance” § Retain existing clients § Open new markets § Increase efficiencies § Easier to sell clients à services required by law (Gaps) § Double profits
“Compliancy Group and their team of Compliance Coaches has let us focus on the security work we’ve always provided while enhancing our offerings with a
powerful total compliance solution that we know will work for our clients.” - George P, Apex Technology Management
Private & Confidential Compliancy Group, LLC. © 2016 4
Compliance is our business
§ No client has ever failed an OCR or CMS audit § 100% of our clients would refer us to a friend § Recognized Leader of Compliance • Top Compliance Tools & Emerging Vendor • Subject-Matter Expert referenced in multiple
publications
• Endorsed by Industry Leaders and Associations
Started in 2005 by HIPAA auditors & Compliance experts § Market need of a solution - for the client • The Guard: cloud-based solution
§ Proprietary Achieve, Illustrate and MaintainTM methodology
§ Confidently satisfy HIPAA, HITECH and Omnibus regulations
We simplify compliance so you can confidently focus on your business.
Compliancy Group
Private & Confidential Compliancy Group, LLC. © 2016 5
★ Client’s Main Location
The Guard Across North America
Private & Confidential Compliancy Group, LLC. © 2016 6
What Partners Are Saying!
*Results from BlogHIPAA.com’s webinar “New Revenue Streams for MSP’s”
Private & Confidential Compliancy Group, LLC. © 2016 7
What is HIPAA?
HIPAA
OMNIBUS
Meaningful Use
§ Compliance vs. Security • Fines vs. Risk
§ HIPAA/HITECH • Protect patient confidentiality while furthering
innovation and patient care • Privacy Rule and Security Rule
§ Meaningful Use • Accelerate adoption of EHR (electronic Health
records)
§ Omnibus • Business Associates must be HIPAA compliant • Covered Entities must have BAAs
§ Conduct Due Diligence
• Breach Notification Rule
Private & Confidential Compliancy Group, LLC. © 2016 8
Compliance vs. Security § Audits
• Security, Privacy, and Administrative § Gap Identification § Remediation § Policies & Procedures § Employee Training & Attestation § Business Associate Management
• BA Agreements & Audit § Incident Management
§ Security Risk Analysis • Penetration Testing • Vulnerability Scan
§ Network Security § Managed Services § IT Consulting § Cloud Services
REPUTATION FINES
REPUTATION
Security Risk Assessment
RISK
Private & Confidential Compliancy Group, LLC. © 2016 9
Privacy Audit
Requires safeguards to ensure only those who should have access to
electronic protected health information (ePHI) will have
access.
Security Rule
Administrative Audit Security Audit
Sets standards for when protected health
information (PHI) may be used and disclosed.
Privacy Rule
Breaches of unsecured PHI require notifying HHS,
affected individuals, and in some cases the media.
Breach Notification Rule
Meaningful Use Risk Assessment
Private & Confidential Compliancy Group, LLC. © 2016 10
What’s The Big Deal About HIPAA? HIPAA is the Law § HIPAA is confusing • SRA (Security Risk Assessment) • Policies & Procedures • Training
§ Current market solutions only address pieces of compliance
§ Enforcement is on the rise é • Record fines levied: $20,264,800 this year* • Three prison sentences • Medical license revoked • State Attorney General levying fines
* As of August 2016, http://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/agreements/index.html
?
Policies, Procedures & Training
Audits SRA (Security Risk
Assessment)
?
?
? ?
Private & Confidential Compliancy Group, LLC. © 2016 11
The Seven Fundamental Elements of an
Effective Compliance Program Compliance according to HHS:
1. Implementing written policies, procedures and standards of conduct.
2. Designating a compliance officer and compliance committee.
3. Conducting effective training and education.
4. Developing effective lines of communication.
5. Conducting internal monitoring and auditing.
6. Enforcing standards through well-publicized disciplinary guidelines.
7. Responding promptly to detected offenses and undertaking corrective action.
*Source HHS & OIG
Private & Confidential Compliancy Group, LLC. © 2016 12
The Total Compliance Solution The Guard
ü Compliance Coaching ü We guide you through the whole process! ü 5-8, 30-min. sessions (2 hours preparation per)
Achieve Compliance
Illustrate Compliance ü Reports ü Seal of Compliance – Differentiate yourself
Maintain Compliance ü Compliance with Confidence ü Culture of Compliance ü Protect your reputation
Audits SRA (Security Risk
Assessment), Administrative,
Privacy
Remediation Plans
Policies, Procedures & Training
Business Associate
Management
Incident Management &
Remediation
Document Version,
Employee Attestation &
Tracking
The GuardTM
Private & Confidential Compliancy Group, LLC. © 2016 13
Seal of Compliance § Illustrate to auditors, patients,
and partners that you’re taking the necessary steps toward achieving HIPAA compliance.
HIPAA Hotline § Call 855-85-HIPAA, Compliance
Coaches will be available to answer any HIPAA related and/ or technical questions.
Private & Confidential Compliancy Group, LLC. © 2016 14
Seal Of Compliance § Seal of ComplianceTM verification program • HIPAA Compliance Verified • Seal of Compliance Certificate
• Powered by the HIPAA Alliance
§ Differentiation • HIPAA compliance • Up-to-date Security standards.
§ Alternative HITRUST certification verification • Cost-effective
§ Illustrate and maintain HIPAA D ATE: S IGNATURE:
A UTHORIZED B Y : C O M P L I A N C Y G R O U P
S ea l o f Comp l iance C e r t i f i ca t e
XYZ ORGANIZATIONT H I S C E R T I F I C A T E I S P R E S E N T E D T O :
1 0 / 1 8 / 1 6
By utilizing Compliancy Group's Achieve, Illustrate, Maintain (AIM) methodology, this organization has completed the implementation of its HIPAA compliance program and has
been presented the HIPAA Seal of Compliance as means of verification.
Marc Haskelson
President & CEO
Private & Confidential Compliancy Group, LLC. © 2016 15
The Total Compliance Solution, “The Guard”
Audits SRA (Security Risk
Assessment), Administrative,
Privacy
Remediation Plans
Policies, Procedures & Training
Business Associate
Management
Incident Management &
Remediation
Document Version,
Employee Attestation &
Tracking
The GuardTM
§ Compliance Coaches – to coordinate and support through the entire process
§ Access to The Guard web based SAAS and proven Achieve, Illustrate and MaintainTM methodology
§ All HIPAA required Audits, Assessments and Remediation plans
§ Privacy and Security Policy & Procedures § HIPAA, Fraud Waste & Abuse training § Employee Training and Attestation Management
§ Business Associate Audits and Management § Incident Management § Full Reporting and Document version control § Seal of Compliance - including validation certificate, report
and Logo for use on websites or printed material
Private & Confidential Compliancy Group, LLC. © 2016 16
Market “MSRP” Pricing
SENTRY Annual Subscription
$200/Mo $2,000/Yr
For The Single Location
Up to 25 Users Up to 2 Admins
Up to 10 BAs HIPAA Coaching Sessions Security Risk Assessment
The Guard Standard Features HIPAA Seal of Compliance
Pay Yearly & Save $400
ENTERPRISE Annual Subscription
$300/Mo $3,000/Yr
Addt’l Site(s): $60/Mo, $600/Yr
For The Mid To Large Size
Up to 200 Users/Site Up to 5 Admins/Site
Up to 25 BAs/Site HIPAA Coaching Sessions Security Risk Assessment
The Guard Standard Features HIPAA Seal of Compliance
PCI Audit
Pay Yearly & Save $600+
Private & Confidential Compliancy Group, LLC. © 2016 17
Private & Confidential Compliancy Group, LLC. © 2016 18
Flexible Options
Affiliate § Referral Fee § Partner Portal – Tracking and
verification
Reseller § Standalone solution • We do the work • You collect $300 - $1,500 per client
§ Bundle w/ your services • Create a value added solution • Increased efficiency, provide
greater value, increased revenue and profits
• Average Client $5,000 - $10,000 per yr
Private & Confidential Compliancy Group, LLC. © 2016 19
Annual Recurring Earnings Opportunity
Health Care Clients 20 50 100 500
CaaS Charge $120,000 $300,000 $600,000 $3,000,000 Per User Increase
Monthly $360,000 $900,000 $1,800,000 $9,000,000
New Revenue $480,000 $1,200,000 $2,400,000 $12,000,000
65 % Gross Profit $312,000 $780,000 $1,560,000 $7,800,000 Plus remediation project work $1,500 - $15,000 per client
Private & Confidential Compliancy Group, LLC. © 2016 20
Sales & Marketing Support Partner Central Portal § Marketing material • 90 Day Marketing Plans • Proposals, brochures and flyers
§ Training § Financial bundle advice § Learn to add Compliance as a Service
Compliance & Sales experts support you § Monthly Sales Calls § Webinars § Demo & Sales Support
Listing in the HIPAA Alliance Marketplace
Private & Confidential Compliancy Group, LLC. © 2016 21
Partner Portal [Insert Your Logo Here]
[Insert Your Logo Here]
Private & Confidential Compliancy Group, LLC. © 2016 22
HIPAA ALLIANCE MARKETPLACE § Directory of HIPAA compliant
providers § Access to 300,000 Healthcare
Decision Makers • Looking for HIPAA compliant
service providers
Private & Confidential Compliancy Group, LLC. © 2016 23
Engagement Plan Start 90 Days
Your Compliance Ø Achieve compliance Ø Illustrate compliance w/
Seal of Compliance Ø Maintain compliance
Achieve Compliance
Marketing & Sales Plan Ø Learn about CaaS,
marketing materials & how to sell
Ø Develop your Marketing Plan, Pricing & Positioning
Ø Sales Coaching Ø Demo, Proposal Support
& Closing Support
CAAS
Implement Clients Ø Start compliance
implementation for new clients
Ø Privacy and Administrative efforts
Ø Work with you on Security and Remediation Gaps
New Sales Ongoing Engagement
Achieve Target Ø Achieve target: 5 clients Ø Continue implementation
of clients Ø Obtain new clients Ø Ongoing partner support
$3,000 start up
5 New Clients
Private & Confidential Compliancy Group, LLC. © 2016 24
Affiliate vs. Reseller
Referral Affiliate No Startup Cost
15% Referral Fee
ü New Opportunities ü Increase Brand Awareness ü Additional revenue ü Sell 10 ride for FREE
Reseller Start up Cost
$3,000 (15-40% Discount)
ü Achieve Compliance with The Guard ü Compliance Coach ü Seal of Compliance
ü Compliance as a Service ü Marketing Material
ü Sales Coach ü Sell 5 Ride for FREE
Bundle In Your Services!
Private & Confidential Compliancy Group, LLC. © 2016 25
Get Me Started Now! § Signing up • Affiliate § Referral Agreement
• Reseller § EULA of The Guard § Reseller Agreement
• Implementation • Marketing Plan
§ Client Engagement • We support you
Private & Confidential Compliancy Group, LLC. © 2016 26
Marc Haskelson President & CEO
855 85 HIPAA (855.854.4722) Ext 507 [email protected] www.CompliancyGroup.com