Compliance Management Software
Now with Risk Analysis!
HIPAA FLIGHTPLAN was designed from the ground up with you and your EXTREMELY limited time in mind.
No more 'winging it' when it comes to your Security Rule Compliance.
Become organized, educated and confident in your HIPAA Security Rule Compliance!
Now, expanded to include policy and procedure management for the Privacy Rule and the Breach Notification Rule!
Quick Reference Dashboard
Don't fall behind. Use the home page dashboard to stay on top of upcoming tasks and expiring items. See lists of upcoming or over due activities, training, reviews and exactly where you stand with the citation coverage of your policies for Security, Privacy and Breach Notification.
Security Rule Citations & Guidance, Plus Privacy Rule and Breach Notification Rule Citations
Easily access the standards and implementation specifications, as well as guidance from HHS, right inside FlightPlan.
Risk Analysis
Create and maintain your ongoing Risk Analysis. Manage scoped assessments for different areas of your organization. Track and manage your assets, threats, vulnerabilities, risks and security measures.
§164.308(a)(1)(ii)(A)
Business Associates
Know who your BAs are, who your main contacts are, and ensure you have agreements and assurances from your BAs that they are securing your ePHI. Track security incidents for each BA so you can evaluate their performance over time.
§164.308(b)(1), §164.308(b)(3)
§164.314(a)(1), §164.314(a)(2)
Manage Your Policies & Procedures
With HIPAA FLIGHTPLAN, you have one location to store, update, manage (including revisions) and retrieve your Security Rule policies and procedures. No more 3 ring binders!
§164.308(a)(1)(i),
§164.316(a), §164.316(b)(1), §164.316(b)(2)
Policy Assignments
Assign policies and procedures to the Security Rule, Privacy Rule, and Breach Notification Rule citations they address so you can later see your gaps (see below). Now, you can also assign each policy to your employee's job roles. This allows each of your teammates to know exactly how their job is responsible for ePHI.
§164.316(a), §164.316(b)(1), §164.316(b)(2)
§164.308(a)(8)
Policy 'GAP' Reporting
Always know where you stand. See, in real time exactly which standards and implementation specifications you have covered by your internal policies. More importantly, clearly see which ones are still lacking. Just one more way to help you stay on top of your HIPAA compliance.
§164.316(a), §164.316(b)(1), §164.316(b)(2)
§164.308(a)(8)
Security Incident Response & Reporting
A single place to log all suspected and actual security incidents (and when necessary, breaches) along with your response and the outcome.
Even your workforce (if you allow) can open and log security incidents they see. A great way to get your whole team involved in protection your ePHI.
§164.308(a)(6)(i), §164.308(a)(6)(ii)
Plan and Track Security Awareness & Training
Don't let time slip away...keep your staff trained and aware! Plan out your security awareness and other training events ahead of time. Track and record which workforce members attended the training - and who didn't.
§164.308(a)(5)(i), §164.308(a)(5)(ii)
Assign and Track Activities
There are lots of things that need to be done to ensure full compliance. Build an internal compliance team and track your activities in FlightPlan.
§164.308(a)(1)(i), §164.308(a)(2)
Employee Access & Sign-Off on Policies
No more three ring binders! Give each employee instant access to all the policies that are required by their job role(s). Ensure that each employee has read, understands and agrees to follow each policy by having them sign off on each policy.
§164.316(b)(2)(ii)
Sanction Employees :-(
No, it's not the most enjoyable thing, but it is necessary and required. Track your sanctions against employees who fail to follow your internal HIPAA policies.
§164.308(a)(1)(ii)(C)
Maintenance Records
Track all facility maintenance activities such as repairs, installations and removals.
§164.310(a)(2)(iv)
Information System Activity Reviews
Plan and log your reviews of EHR audit logs and other available logging of your systems. Record the reviews performed by your IT vendor (or in-house staff).
§164.308(a)(1)(ii)(D)
Every Feature & Unlimited App Support Included in the Pro Version
No Down Payment and No Contract
Sign Up Today
You May Cancel Anytime for Any Reason
(but we're pretty sure you won't want to)
(Pricing Note: A 3 provider practice pays just $125/month, not $375/month.)
Or try HIPAA FLIGHTPLAN Lite -- Only $75/month
Excludes the following features:
Risk Analysis
Sanctions
Security Incident & Reporting
Information System Activity Reviews
"My Policies" for the Workforce
Maintenance Log
Gap Analysis