By Anne Kimbol, JD, LLM, Texas Health Services Authority General Counsel
A new certification process for Texas covered entities is on its way, and it could help show compliance with state and federal privacy and security regulations.
The Texas Health Services Authority (THSA) was created by the Texas Legislature in 2007 as a public-private partnership, legally structured as a nonprofit corporation, to support the improvement of the Texas health care system by promoting and coordinating health information exchange (HIE) and health information technology (HIT) throughout the state to ensure that the right information is available to the right health care providers at the right times.
One of the THSA’s missions, under House Bill 300 (82R), is to develop and administer a certification program looking at Texas covered entity’s compliance with state and federal privacy and security laws and regulations. The THSA is developing the program in partnership with the Health Information Trust Alliance (HITRUST), a Texas company specializing in helping entities understand and meet the privacy and security laws, regulations, and best practices. HITRUST is nationally known and recognized as a leader in the field.
By participating in the certification program, providers will also be able to show that their policies and procedures are consistent with HIPAA, HITECH, Texas Medical Records Privacy Act, and other relevant state and federal privacy and security regulations.