Security Compliance

INFITECH is extremely versed in both HIPPA and CJIS compliance.


HIPAA Compliance Consulting

You may be under the impression that complying with HIPAA regulations is overly complicated and expensive. But the reality is that HIPAA compliance is actually 80% operational and facilities management, and only 20% technical. And when compared with the costs of non-compliance, the additional expense of complying with HIPAA is relatively low.


HIPAA Overview

The Health Insurance Portability and Accountability Act (HIPAA) of 1996 is a comprehensive law that drives the development of electronic data interchange (EDI) for specified administrative and financial healthcare transactions.

HIPAA’s intent is to improve the efficiency and effectiveness of the healthcare system, by encouraging the use of health information systems that utilize EDI for administrative and financial transactions. It requires that all parties involved with these transactions follow the guidelines established in the law.


CJIS Compliance

The Criminal Justice Information Services (CJIS) database provides state, local, and federal law enforcement and criminal justice agencies with access to critical, personal information such as fingerprint records, criminal histories, and sex offender registrations. In order to prevent unauthorized access to this extremely sensitive information, a security policy governing the access to the CJIS database was enacted on January 1, 2011. The CJIS mandate sets forth the minimum requirements for securing access to the data included within CJIS. The policy requires “Advanced Authentication,” or multi-factor authentication, to be implemented across all those agencies that access the information contained in the CJIS database. Public safety, judicial, and correctional institutions must comply or face administrative sanctions and/or criminal penalties as set forth by the FBI.