The Electronic Healthcare Network Accreditation Commission (EHNAC) (@), a non-profit standards development organization and accrediting body for organizations that electronically exchange healthcare data, announced that it has been designated HITRUST CSF Assessor by the Health Information Trust Alliance (HITRUST) (@). With this achievement, EHNAC is now approved to provide services using the HITRUST CSF, a comprehensive security framework that addresses a multitude of security, privacy and regulatory challenges facing healthcare organizations in order to comply with healthcare (HIPAA, HITECH), third-party (PCI, COBIT) and government (NIST, FTC) regulations and standards.
CSF Assessors are critical to helping uphold information security and privacy standards for the healthcare industry. They form a core component of the HITRUST CSF program by providing trained resources to healthcare organizations to assess compliance with security control requirements. They also oversee the creation of corrective action plans that align with the CSF.
“Our designation as a HITRUST CSF Assessor is the next step in our recently announced partnership with HITRUST to streamline the security and compliance assurances of the healthcare industry through more leadership and efficiency, and less complexity, redundancy and costs,” said Lee Barrett, executive director of EHNAC. “We are now the only organization in the industry with the ability to provide both EHNAC accreditation and HITRUST CSF certification. Organizations that obtain a CSF certification may also leverage that assessment in obtaining accreditation for any of EHNAC’s 18 stakeholder-specific accreditation programs.”
“We are pleased to have EHNAC as a CSF Assessor to help healthcare organizations with the process of adopting and utilizing the CSF’s requirements and give their customers confidence in the protection of their information,” said Ken Vander Wal, chief compliance officer, HITRUST. “The company’s long-standing expertise and leadership in health IT privacy and security solutions make it a perfect addition to our program.”
The Electronic Healthcare Network Accreditation Commission (EHNAC) is a voluntary, self-governing standards development organization (SDO) established to develop standard criteria and accredit organizations that electronically exchange healthcare data. These entities include accountable care organizations, data registries, electronic health networks, EPCS vendors, e-prescribing solution providers, financial services firms, health information exchanges, health information service providers, management service organizations, medical billers, outsourced service providers, payers, practice management system vendors and third-party administrators.
EHNAC was founded in 1993 and is a tax-exempt 501(c)(6) nonprofit organization. Guided by peer evaluation, the EHNAC accreditation process promotes quality service, innovation, cooperation and open competition in healthcare.