Trusiak Law - areas of practice - HERO Act

HIPAA and HITECH Policies

Trusiak Law, in its representation of health care clients, performs certain functions or activities on their behalf that involve the use or disclosure of protected health information. Trusiak Law routinely enters into the required business associate agreements with these physician, hospital and health care clients in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Trusiak Law has implemented the appropriate safeguards to prevent unauthorized use or disclosure of the information, including the adoption of the necessary written policies required by a Business Associate, even an attorney, pursuant to the HIPAA Security Rule for handling protected health information.

Trusiak Law has developed policies in compliance with the HIPAA Security Rule. Upon request, the policies will be made available for review by the covered entities with whom Trusiak Law is a business associate. These policies include the following:

  • Business Associate Agreements
  • Breach Response
  • Sanctions for HIPAA Violations
  • Security Management Process
  • Assigned Security Responsibility
  • Workforce Security
  • Information Access Management
  • Security Awareness and Training
  • Security Incident Procedures
  • Contingency Plan
  • Evaluation
  • Facility Access Controls
  • Workstation Use
  • Workstation Security
  • Device and Media Controls
  • Access Control
  • Audit Controls
  • Integrity
  • Person or Entity Authentication
  • Transmission Security



Call and schedule your meeting today! Contact Trusiak Law