HIPAA/HITECH Statement

The White Stone Group, Inc., recognizes the importance of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and The Health Information Technology for Economic and Clinical Health Act (“HITECH”) to both our clients and the patients they serve.  We seek to develop our software and services to comply with the current state of law and regulations and to promote the privacy and security of the information entrusted to us.

Accordingly, our Trace platform is designed with HIPAA/HITECH compliance in view. Protocols throughout the platform secure the flow of data from its capture, during its use and dissemination, through its storage and final destruction. Further, we developed our product training and documentation to assist our users in maximizing the Trace security features. Additionally, the Trace platform readily incorporates into an entity’s existing physical and technical security program, making it easier for our clients’ to comply with their own internal HIPAA/HITECH specifications.

Internally, The White Stone Group commits itself to developing a culture of privacy and security among its own personnel. Employees and contractors undergo a strenuous vetting and training process designed to impart the importance of securing sensitive and protected information they encounter in their day-to-day workflow. Our compliance efforts follow the healthcare industry’s best practices, and we are vigilant to revise and improve our methods as new protocols and practices emerge.

For questions regarding HIPAA/HITECH compliance or more specific details on your particular Trace system, please e-mail Gretchen Johnson, Esq., HIPAA Compliance Officer for The White Stone Group, at hipaa@twsg.com.