Loading images...


We came together with our partners, ID Experts, and other privacy and security compliance experts to contribute to this list of tips to help combat security threats from mobile device use. Download it now!

13 Security Tips to Combat Mobile Device Threats to Healthcare

Are you prepared for an OCR HIPAA Audit or Investigation? We presented a webinar addressing the audits on February 15, 2012, together with partners ID Experts. We’ve provided Q&A for you from our presenters, Chris Apgar and ID Experts’ Vice President of Product Management, Mahmood Sher-Jan. Also, you can download the presentation here.

OCR Updates: OCR’s HIPAA audit program Round 2 has begun!

Planning Tools & Guides

Business Associate Mini-Audit Security Questionnaire 2014

Organizational Compliance Planning Cycle Reference Sheet

HIPAA & HITECH Resources

General HIPAA, Security, Privacy and Health Information Exchange Information:

Center for Medicare & Medicaid Services: Regulatory agency for HIPAA transactions & code sets and national healthcare identifiers

Office of Civil Rights: Regulatory agency for HIPAA privacy and security

National Institute of Standards & Technology: National security standards (referenced in HIPAA Security Rule preamble)

Health Information Security & Privacy Collaborative: US Dept. of Health & Human Services (HHS) sponsored national project to address barriers to electronic health information exchange while continuing to protect privacy and security

Health Information Standards Panel: HHS sponsored national project to address identification of technical and data standards for electronic health information exchange and electronic medical records

America Health Information Community: HHS sponsored national oversight body to address increased use of electronic health information exchange (soon to be privatized)

Workgroup for Electronic Data Exchange: HIPAA Designated Standards Maintenance Organization and excellent HIPAA, privacy, security, regulatory and electronic health information exchange reference site

Oregon & SW Washington Healthcare, Privacy & Security Forum: A collaborative developed to address cross industry needs related to information exchange, new technology, security, privacy and regulatory issues

SANS: A general information security knowledge base

MIS Training Institute: Quality security training and conferences

DataMotion: Quality encryption solution

Protected Trust: Quality encryption solution

HCPro: Vendor for quality HIPAA and healthcare training materials and courses

AIS: Vendor for quality HIPAA and healthcare training materials and courses

Quality Medical Management Resources: Linden Consulting Group: Quality medical management and research


"AIS has worked with Chris Apgar regularly on HIPAA privacy and security issues for more than 10 years and our experiences with Chris, in every instance, have been outstanding. He is incredibly knowledgeable, very responsive, and a true pleasure to work with, in every respect."

Richard Biehl, Publisher
Atlantic Information Services, Inc.

Mailing & Office Address

Apgar and Associates, LLC
P.O. Box 80278
Portland, OR 97280
p 503-384-2538
p 877-376-1981




7100 SW Hampton St.
Suite 137
Tigard, OR 97223