Mytek Logo
MyTek Logo

Understanding the Relationship Between HIPAA and HITRUST

by | Jun 4, 2021 | Miscellaneous, MyTek Blog, Security


Subscribe To The Blog

By subscribing to the blog, you will be notified when a new blog post is created on the site.

HIPAA, which is the Health Insurance Portability and Accountability Act, is a concern for healthcare providers that work within the US, and it is important for good reason. Beginning in August 1996, it mandates that healthcare providers comply with various best practices and security standards. While many people know of this common acronym, way fewer people know about HITRUST which is the Health Information Trust Alliance, and how these two acronyms rely on one another to uphold the health care systems.

Let’s first talk about the major differences between these two acronyms. HITRUST and HIPAA, even though you might think there are, are not both regulatory frameworks. HIPAA is, and very much so, but HITRUST is an organization in itself that has its own framework, such as the Common Security Framework (CSF) that helps businesses comply with HIPAA, PCI, NIST, DSS, and other types of regulations.

What is HIPAA? (Health Insurance Portability and Accountability Act)
After it began and was signed into action in August of 1996, HIPAA regulated the requirements that have to do with healthcare partners and organizations and controls what they must adhere to. These requirements are expanded even further with the addition of the HIPAA Omnibus Rule that integrates the demands of the HITECH (Health Information Technology for Economic and Clinical Health) Act.

What Does the Health Information Trust Alliance Do?
HISTRUST is a coalition that works to bring HIPAA regulations into their own CSF. To make the HITRUST CSF have more accountability and portability, they established requirements that aligned with HIPAA mandates.

How Do These Two Acronyms Coexist?
HITRUST CSF builds on HIPAA and creates a framework and certification process that is standardized and integrated with the demands of HIPAA that is passed down by other compliances and frameworks. HITRUST, in many ways, is the larger challenge that needs to be complied with.

While HIPAA lays out the rules that healthcare providers, affiliated businesses, and organizations need to follow, Hitech gives them the solutions and strategies to do so. Both are very important for any business in the healthcare field so that businesses can avoid considerable challenges and fines.

Do You Need Assistance in Keeping Your Business Compliant?
With all of the different lists of protections and protocols you need to keep track of, it can be difficult to stay completely compliant. MyTek can help your business in doing so by handling all of the technical parts of it for you. Learn more about healthcare-related solutions by giving MyTek a call today at 623-312-2440.


Tim - Team

Tim Tiller, LMSW

Tim Tiller, MSW brings a deep service background to his role at Mytek, having graduated from McDonald’s management training program, fresh out of high school, and working his way up through the ranks in the hospitality industry. He has led two prior companies – Multi-Systems Inc., an IT-focused organization providing technology to hospitality companies (where he was named President at age 36), and most recently, as Chief Operating Officer for Jewish Voice Ministries International.


Subscribe To This Author

By subscribing to the author, you will be notified when a new blog post is created by the author.


Top 5 Hardware Monitoring Software 

Did you know that almost 40% of servers had at least one outage in the last twelve months? Veeam reports that the most common reason for outrages is infrastructure failure which puts the current hardware monitoring practices under the scanner. Hardware failures are...

Types of Mobile Malware & How to Defend Against Them

Malware has a long history of undermining computer security and stealing critical data. With the rapid growth of mobile usage, we're now seeing a new breed of mobile malware infecting smartphones and tablets. The new-age mobile malware are more advanced, seamless, and...

How to Protect Your Data Privacy & Enhance IT Security

Every time you use a device, you enter, modify or access data. Some of your usages are routine and public but sometimes you perform tasks that are confidential in your personal life or business. Naturally, this type of data is private and it should be kept that way....

Mobile? Grab this Article!

QR Code

Blog Archive

Share This