Reporting across all activities of their HIPAA audit risk management program was a huge pain point for Clint Elston, Director-HIPAA Audit Services at Memorial Hermann Health System. His audit team was spending hours each week pulling information from their legacy software system to then compile it into graph reports.
- Data was pulled to show compliance with HIPAA.
- Data was pulled to evaluate OCR compliance.
- Data was pulled to assess the organization’s overall risk posture.
- Data was pulled to measure the status of risk mitigation activities.
Data extraction from the legacy software system to create reports for each of these needs had its own unique process, which meant measuring OCR compliance and risk associated with a HIPAA audit was never fast, simple, nor was it consistent. In fact, the team described evaluating HIPAA audit risk at Memorial Hermann as one of the most time-consuming and laborious tasks they had to undertake.
Conclusion: Clint realized Memorial Hermann was wasting money on an expensive legacy software system while frustrating everyone on his audit team.
In order to deliver the same level of impeccable service as the physicians and staff in their health system, the HIPAA audit risk management team at Memorial Hermann Health System dropped their legacy software system and chose Onspring for real-time reporting, connected data, automatic workflows, and scalability to accommodate future plans and focus areas.