
Policy & Procedure Consulting
As an Employer You May Be Subject To a Random HIPAA Audit
HIPAA Non-compliance could result in costly penalties of $100 per violation to as high as $50,000 per violation.
Increase your HIPAA knowledge and confidence during an audit!
Most employers that sponsor a health plan for their employees (whether self-insured or fully-insured) are considered covered entities under HIPAA and must comply with privacy rules as established under federal regulations. Some employers may also be considered a “business associate” when the use or disclosure of protected health information (PHI) is required while performing services associated with the health plan. We offer an educational program and step-by-step process as an efficient manner to address HIPAA Privacy Compliance tailored for your organization.
Personalized HIPAA Services
We have created a unique method to help your organization understand and follow HIPAA compliance requirements. Our user-friendly method guides you through the HIPPA Privacy Compliance process with templates to create, implement, train and monitor privacy compliance in accordance with rules and regulations.
- Walk through a series of professional webinars using our template manual, while personalizing it to your organizations' determined policies and procedures.
- Identify the plans and staff involved in the plan operations
- Establish policies and processes
- Develop proper documentation of necessary items
- Access available 24/7 via special account admittance.
- Personal password & webinar access for a specified period PLUS document templates (downloadable) to assist your organization to create your personalized HIPAA Privacy compliance manual.
- Contact us for pricing based on your organization's specific needs.
- Being proactive will ensure your ability to comply in an efficient and timely manner!
Let KBC's 30 Years of Experience Work For You
To find out more about these services or how you and your organization can purchase the step by step process, please contact us at OfficeCoord@keybenefits.com or submit a 'Request for Proposal' below.
What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) was established in 1996 to protect the privacy and security of health information and provide individuals with certain rights to their health information.
Specifically, HIPAA regulates the standards for confidentiality, security, and the transmissibility of health care information.
HIPAA Standards
Privacy
Sets standards for the protection of Protected Health Information (PHI) held by covered entities and their business associates which encompasses the administrative and operational requirements of the organization’s Health Plans and defines authorized parties, uses, and disclosures of PHI.
Security
Specifies safeguards that covered entities and their business associates must implement to protect the confidentiality, integrity, and availability of ePHI, encompassing the physical and technological requirements to secure and protect secured electronic PHI (E-PHI).
Administrative Simplification
Governs how data (PHI) is transacted and electronically transferred from one computer to another (used largely in claims processing).
Protected Health Information (PHI)
PHI is individually identifiable health information held or transmitted in any form or medium by HIPAA Covered Entities and Business Associates, subject to certain limited exceptions.
PHI includes information, whether oral or recorded in any form or medium, that relates to the past, present, future physical, mental health, condition of an individual, the provisions of health care to an individual, or the past present or future payment for the provision of health care to an individual.
Who is subject to HIPAA privacy laws?
Covered Entities
- Health Care Providers
- Health Plans (Employers, Insurance Companies, etc.)
- Health Care Clearinghouse
Business Associates
- Updated regulations now hold Business Associates to the same level of compliance as Covered Entities.
Examples of Business Associates include, but is not limited to:
- Third Party Administrators (TPAs), Claim Processing and Billing Centers
- Third Party Professionals (Lawyers, IT Specialists, Accountants, Actuaries)