Clearwater Releases Interactive, Web-based HIPAA-HITECH Compliance Navigator with Built in OCR Audit Protocols to Help Healthcare Organizations Prepare for Audits

Share Article

Enhanced Software-as-a-Service solution now incorporates 77 recently-published OCR security audit protocols to aid customers’ understanding of the requirements, preparation for OCR audits and overall HIPAA Security Rule compliance

Clearwater Compliance LLC
Covered Entities and Business Associates of all sizes have benefitted from our one-of-a-kind HIPAA-HITECH compliance software.” -- Bob Chaput, founder and CEO of Clearwater Compliance

Clearwater Compliance, a leading provider of HIPAA-HITECH compliance software, solutions, and professional services, today announced the release of Version 2.6.2 of the Clearwater HIPAA Security Assessment™, an innovative, interactive navigator designed to help organizations meet the specific requirement to perform a periodic assessment of compliance with the HIPAA Security Rule, prepare for OCR HIPAA site audits and investigations, and to guide organizations in strengthening their compliance programs.

“Covered Entities and Business Associates of all sizes have benefited from our one-of-a-kind HIPAA-HITECH compliance software. This newest release of the Clearwater HIPAA Security Assessment™ SaaS application greatly enhances compliance efforts,” said Bob Chaput, founder and CEO of Clearwater Compliance. “It can be intimidating in meeting the HIPAA Security Rule requirement to complete an initial compliance assessment covering 22 security standards and 50+ implementation specifications prescribed by the regulations. Our assessment navigator, now made even more robust with the addition of the OCR HIPAA Security Rule audit protocols, simplifies that process and makes compliance less overwhelming by guiding the customer through each step of the process.”

In a single sentence in the The Health Information Technology for Economic and Clinical Health (HITECH) Act, mandatory audits of Covered Entities’ and Business Associates’ compliance with HIPAA and HITECH came to be. The first-ever audits have been occurring during 2012. However, the OCR only recently released specific details of its protocols. Clearwater rushed to integrate these protocols into its software so as to make it an even more robust compliance tool for its customers.

This new and improved Version 2.6.2 includes many customer-requested enhancements including:

  •     Enhanced “Document Management” to store all related policies, logs, inventories,

        procedures and other artifacts demonstrating good faith compliance effort.

  •     “Tell Me More” feature that translates the complex regulatory language into plain English

         and includes the actual OCR Audit Protocols featuring specific references to underlying
        NIST Special Publications that provide further guidance.

  •     The “Make a Note” feature to make comments, notes, status remarks at the

        implementation specification level.

“Customers using the Clearwater HIPAA Security Assessment™ have referred to the SaaS application as their ‘living HIPAA compliance manual’ and ‘HIPAA Security Compliance single source of the truth’”, Chaput added. “Using the tool demonstrates good faith effort at compliance and includes evidence and artifacts to prove that effort.”

Risk managers utilizing the Clearwater HIPAA Security Assessment™ are led through a series of audit interview questions regarding the current state of the organization’s HIPAA compliance. The application rolls up the responses into executive level dashboards, providing a snapshot of the current level of compliance and a tool to measure ongoing progress. To guide efforts to improve the level of compliance, the navigator automatically populates a risk remediation plan, outlining corrective steps that need to be taken once the compliance assessment is completed.

As an added benefit for subscribers, Clearwater Compliance continually monitors HIPAA-HITECH compliance regulations and updates the SaaS assessment tool in real time to automatically reflect any changes in the regulations. Subscribers have ongoing access to the compliance assessment, its dashboards, reports and remediation planning to measure continued progress. Additionally, subscribers receive monthly updates on HIPAA-HITECH and have access to online support and vast privacy, security and data breach resources. The Clearwater HIPAA Security Assessment can be used as frequently as an organization requires, as specified in the regulations, to ensure ongoing compliance and offers document upload and management capabilities to provide a secure repository for the organization’s HIPAA security compliance manual.

Qualifying organizations may receive a 30-day free trial of the Clearwater HIPAA Security Assessment™ ( by contacting the company at: info(at)clearwatercompliance(dot)com or 800-707-3394.

A live webinar event entitled “How to Navigate OCR Audit Protocols” will held on Tuesday, July 10th at 11am CDT / 12pm EDT. Individuals may register at:

About Clearwater Compliance:

Clearwater Compliance helps Covered Entities, Business Associates and their Subcontractors assess their HIPAA-HITECH compliance programs, identify gaps and prioritize remediation efforts to ensure the greatest return on capital and resource investments. It delivers that return on compliance investment through education, tools and software, risk management solutions and professional services and consulting. Since 2003, Clearwater Compliance has delivered thought, methodology, software and service leadership to the healthcare industry. As an example, Clearwater Compliance is the Co-Sponsor of the American National Standards Institute Publication of the Report on “The Financial Impact of Breached Protected Health Information: A Business Case for Enhanced PHI Security”. For more information, visit:

# # #

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Mandy Sansom
Visit website