The well-being of your patients is foremost, and the technology that helps you accomplish your best work is seamless, reliable and available.

 

With decades of experience in healthcare & IT, ReliAvail helps private practices and managed service providers reach the next patient,
without IT getting in the way

Healthcare Technology

Healthcare Matters

The well-being of your patients is foremost, and the technology that helps you accomplish your best work is seamless, reliable and available.

 

With decades of experience in healthcare & IT, ReliAvail helps private practices and managed service providers reach the next patient,
without IT getting in the way

Healthcare Technology

for private practice providers and managed care organizations

MOBILITY / MDM

Mobile device management that ensures confidentiality, no matter where you roam.

OPERATIONS

Expertise on the premise and in the cloud, empowering your healthcare operations.

SECURITY

Real-time, ongoing monitoring, assessment, and security for all of your healthcare IT assets.

COMPLIANCE & CONSULTING

HIPAA, HITECH, HITRUST, Meaningful Use... we translate so you can remain productive.

DISASTER RECOVERY

Business backup, disaster and recovery solutions to ensure full preparedness and continuity.

HELPDESK & OUTSOURCED IT

100% outsourced or Subject Matter Expertise, we help sole providers and Enterprise alike. 

TESTIMONIALS

"ReliAvail always goes above and beyond,
without us asking."

V. Holloway / Office Manager / OB/GYN practice

"I would recommend ReliAvail to anyone... looking for external support, with projects, or ongoing [IT] system support."

R. Stough / Director of IT / Healhcare non-profit $450M+

Ready to get started? Start here. 

Leave your info and we’ll get back to you.

Let's talk.

Frequently Asked Questions (FAQs)

What are HIPAA, HITECH and HITRUST?


The Health Insurance Portability and Accountability Act of 1996 (HIPAA) contains provisions that seek to encourage the adoption of electronic health records (EHR) systems, thereby improving the efficiency and quality of healthcare delivered in the U.S.; key provisions of the legislation provide for information sharing and most importantly, information security of so-called "protected health information" or PHI. PHI encompasses a very wide variety of personally identifiable health information (PII) and health-related data, including insurance and billing information, diagnosis codes or data, clinical care data, lab, test and image results, etc. The HIPAA rules apply to covered entities, which may include hospitals, doctors' offices, medical service providers, employer-sponsored health plans, research and medical trial facilities, and insurance providers that may deal directly with patients and patient data. The HIPAA requirement to secure PHI also extends to business associates of the providers listed above.

The Health Information Technology for Economic and Clinical Health Act (HITECH) was intended to extend and further clarify HIPAA rules in 2009. Together, HITECH and HIPAA provide a set of federal standards that are intended to protect the security and privacy of PHI and PII, to include: use and disclosure of PHI, best practices to safeguard PHI, individual rights to their PHI and storage/transmittion thereof, and administrative responsibilities. HITRUST is defined as the Health Information Trust Alliance. The alliance's Common Security Framework (CSF) "is a certifiable framework that provides organizations with a comprehensive, flexible and efficient approach to regulatory compliance and risk management. Developed in collaboration with healthcare and information security professionals, the HITRUST CSF rationalizes healthcare-relevant regulations and standards into a single overarching security framework." The HITRUST CSF "serves to unify security controls from federal law (HIPAA and HITECH), state law (such a Massachusetts's Standards for the Protection of Personal Information of Residents of the Commonwealth), and non-governmental frameworks (such as the PCI Security Standards Council) into a single framework that is tailored for healthcare needs."

For more information regarding HIPAA, HITECH and PHI, please reference the Health Information Privacy section of the US Department of Health and Human Services web site.




Are ReliAvail & our solutions HIPAA "certified"?


There is no certification for a cloud service provider (CSP) such as ReliAvail I.T. Company. However, in order to meet HIPAA requirements applicable to our operating model, ReliAvail aligns our HIPAA risk management program with FedRAMP and NIST 800-53, which are higher security standards that map to the HIPAA Security Rule. NIST supports this alignment and has issued SP 800-66 An Introductory Resource Guide for Implementing the HIPAA Security Rule, which documents how NIST 800-53 aligns to the HIPAA Security Rule.




What is a Business Associate Addendum / Agreement?


Under the HIPAA regulations, cloud service providers (CSPs) such as ReliAvail are considered business associates. The Business Associate Addendum (BAA) is a contract that is required under HIPAA rules to ensure that ReliAvail appropriately safeguards protected health information (PHI). The BAA also serves to clarify and limit, as appropriate, the permissable uses and disclosures of PHI by ReliAvail, based on the relationship between ReliAvail and our customers, and the activities or services being performed by ReliAvail.




Will ReliAvail sign a Business Associate Addendum / Agreement as described in the HIPAA rules and regulations?


Yes. ReliAvail has a standard Business Associate Agreement (BAA) that we present to our customers for signature. It takes into account the unique services that ReliAvail provides and accomodates the ReliAvail Shared Responsibilty Model.




Does HIPAA compliance require me to use dedicated instances or hosts to process protected health information?


Quite simply, no.




How does ReliAvail help my organization to protect Protected Health Information (PHI) or Personally Identifiable Information (PII)?


ReliAvail consistently works to meet the requirements of FedRAMP and NIST 800-53, more stringent security requirements that then HIPAA Security Rule itself. We believe strongly in a composite, layered and holistic approach to information security and weave those best practices into all areas of our service.




Is my organzation subject to HIPAA compliance requirements?


The HIPAA rules apply to covered entities, which include hospitals, medical services providers, employer sponsored health plans, research facilities, and insurance companies that deal directly with patients and patient data. The HIPAA requirement to protect PHI also extends to business associates.




How do I get started with ReliAvail?


Easy! Request a free 30-minute telephone consultation with ReliAvail and we will reach out to you within the next business day.





© 2019 ReliAvailSM I.T. Company | All Rights Reserved

  • Black LinkedIn Icon
  • Black Facebook Icon
  • Black Twitter Icon
  • Black Instagram Icon

301 Philadelphia Ave, Chambersburg, PA 17201

Tel: +1 (717) 609-1152 or (877) 372-6782