eDiscovery Leader Discovia Achieves HIPAA and HITECH Compliance

Share Article

Becomes One of the Only Industry Providers to Satisfy Highest Level of Data Security Standards According to Third-Party Auditors

News Image
"We have a thorough knowledge of healthcare industry security requirements through our experience working with healthcare organizations and their outside counsel,” said Talin Andonians, Discovia’s COO.

Discovia, a leading global provider of eDiscovery services to corporations, law firms and government entities, today announced that an independent data security firm completed an assessment confirming that Discovia is compliant with applicable Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health Act (HITECH) security rules and breach reporting requirements. The detailed compliance audit was performed by third-party CPA firm BrightLine, which specializes in security and compliance assessments for regulated technology providers.

With this announcement, Discovia is one of the only eDiscovery services providers to become ISO 27001-certified and HIPAA/HITECH compliant according to independent third-party auditors.

As an early adopter in providing ediscovery and related services to healthcare organizations, Discovia has entered into HIPAA Business Associate Agreements (“BAAs”) for several years. This independent attestation now provides tangible documentation of compliance for Discovia’s obligations to its healthcare clients.

"Discovia focuses on data security for all of our clients as a way of life. We have a thorough knowledge of healthcare industry security requirements through our experience working with healthcare organizations and their outside counsel,” said Talin Andonians, Discovia’s COO. “This assessment by an independent auditor validates that we are compliant with important HIPAA and HITECH security rules and guidelines.”

HIPAA requires organizations engaged in handling electronic Protected Health Information (ePHI) to implement the necessary systems, procedures, and policies to secure such information. In addition the HITECH Act includes provisions that require organizations that store ePHI to implement procedures to report any breach of unprotected ePHI.

The stringent security assessment reviewed Discovia’s compliance in its data management, data hosting, and data security operations in the following critical areas of HIPAA and HITECH:

  •     Administrative safeguards
  •     Physical safeguards
  •     Technical safeguards
  •     Breach notification

About Discovia

Discovia provides electronic discovery services to corporations and law firms engaged in litigation, ITC investigations, and internal and regulatory investigations, including HSR Second Requests. Services include onsite and remote data collections, data minimization, data processing and hosting, expert application of leading technology-assisted review tools, document review management, and document productions. Discovia is one of the few eDiscovery services providers to achieve ISO 27001 certification for data security, and the first to be certified under the new 2013 protocols. Discovia is the first to publish its accuracy rate - 99.7 percent, and typically achieves data culling rates of 95 percent for repeat clients. Discovia is the first eDiscovery services firm to deliver a fixed-price managed services solution, enabling corporate legal departments and law firms to gain a world-class eDiscovery function with complete cost predictability. More information is available at 415-392-2900 or http://www.discovia.com.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Greg Mazares
Discovia
+1 (415) 321-8399
Email >
Visit website