Skip to content
Linford & Company LLP
LinkedIn
  • Services
    • Our Audit Process
    • SOC 1 (f. SSAE 16) Audits
    • SOC 2 Audits
    • HIPAA Audits
    • Royalty & Licensing Audits
    • FedRAMP Compliance
    • HITRUST Audit & Certification
  • About Us
    • Leadership Team
    • Careers
  • Blog
  • Downloads
  • Contact
Request Quote
Linford & Company LLP
Request Quote
  • Services
    • Our Audit Process
    • SOC 1 (f. SSAE 16) Audits
    • SOC 2 Audits
    • HIPAA Audits
    • Royalty & Licensing Audits
    • FedRAMP Compliance
    • HITRUST Audit & Certification
  • About Us
    • Leadership Team
    • Careers
  • Blog
  • Downloads
  • Contact
CLOSE MENU

Tag: Security Rule

HIPAA Record Retention Requirements

HIPAA Record Retention Requirements: How Long Should We Retain ePHI Data?

By Rob Pierce, Partner | CISSP, CISA on August 2, 2017July 26, 2018

One of the areas we are required to evaluate on every HIPAA audit or compliance assessment is whether our client is compliant with HIPAA’s record retention requirements.

Tagged Breach, ePHI, HIPAA, Privacy, Risk, Security, Security Rule

The HIPAA Contingency Plan

By L&Co Staff Auditors on February 3, 2016August 23, 2018

One of the areas we review on all audits and assessments of the HIPAA Security Rule is HIPAA’s requirements concerning contingency plans.

Tagged Data Backup Plan, Disaster Recovery Plan, Emergency Mode Operation Plan, ePHI, HIPAA Contingency Plan, Security Rule

SaaS HIPAA Compliance Considerations & Certification Clarifications

By Rob Pierce, Partner | CISSP, CISA on February 18, 2015August 23, 2018

With the use of cloud technology trending upward, many cloud companies are touting themselves as “HIPAA certified.” In fact, there is no such thing as a HIPAA certification.

Tagged AT 601, Compliance, ePHI, HIPAA, SaaS, Security Rule

Using the SOC 2 or AT 601 Reports to Demonstrate Compliance with HIPAA

By L&Co Staff Auditors on September 18, 2013October 11, 2017

The modifications to HIPAA known as the “HIPAA Omnibus Rule” became effective March 26, 2013, and covered entities and business associates were give about 6 months to get in compliance.

Tagged AT 601, HIPAA, HIPAA Compliance, HIPAA Compliance Audit Report, HIPAA Omnibus Rule, Privacy, Privacy Rule, Security, Security Rule, SOC 2

Services

  • Our Services
  • Our External IT Audit Process
  • SOC 1 (f. SSAE 16)
  • SOC 2 Audits/Reports
  • HIPAA Compliance Audits
  • Royalty & Licensing Audits
  • FedRAMP Compliance

About

  • Linford & Company LLP
  • Leadership Team
  • Careers

Blog

  • Our Blog
  • Downloads
  • Newsletters

CONTACT

(720) 330 7201

1550 Wewatta Street
Second Floor
Denver, CO 80202

Email Us
Copyright © 2008 by Linford & Company, LLP | Privacy Policy