Our Registry Program is Secure and Compliant
We are HIPAA and HITECH Compliant
We’re a Health Information Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act compliant organization. This has led to us documenting and implementing policy, as well as training employees according to the regulations. Some of the data we collect will qualify as protected health information (PHI) under HIPAA Privacy and Security rules. We take data security seriously and employ several steps to safeguard patient privacy.
We utilize industry-wide best security practices when it comes to the integrity and safeguarding of our sensitive information. You can be confident in knowing that we have employed internal risk management practices to ensure the confidentiality, integrity, and availability of your data. We’ve activated strong authentication measures and strong encryption algorithms that meet industry standard criteria. In addition, we’ve implemented administrative, physical, and technical safeguards to protect the availability, confidentiality, and integrity of the confidential patient information.
Our Annual Audit Confirms Data Integrity
You can be confident about your site’s data integrity. To ensure that the Registry Program's data and reporting are as accurate as possible, every year we undergo a third-party audit of a sample of our participating sites. Quality Insights is a non-profit organization that works with numerous medical specialty organizations and the federal government on a variety of quality initiatives. They have audited our data since 2013, and their latest finding from our 2017 data audit has the overall agreement rate for the medical record review at 94.5%. The overall completeness assessment rate was 75%.