Compliance Plus is a total solution –
a comprehensive suite of products and services,
backed by a team of healthcare information
and management specialist with decades of
experience serving hundreds of medical practices.

With Compliance Plus, you are not alone.
We’re with you through the compliance process, 

providing the necessary documentation,
analysis and training to ensure a
“real world” implementation of meaningful standards.

THE SERVICE

Compliance Assessment

Compliance Assessment

Your dedicated healthcare specialist will analyze your current policies and procedures to help you determine where you are already in compliance and where you need to focus next, not only with HIPAA but with all your compliance concerns.

Policies and Procedures

Policies and Procedures

We will review your current policies and procedures to ensure full compliance.  If you don’t have policies, don’t worry.  Compliance Plus includes full access to the Kassouf library of policies, forms and training material.

IT Risk Assessment

IT Risk Assessment

Compliance Plus includes an annual on-site IT risk assessment by a healthcare IT specialist.  This is not just a check list or an app.  We engage your staff and IT vendor to identify real issues that pose real threats to your network.  Then we help make sure those issues are corrected.

STREAMLINED ON-BOARDING

STREAMLINED ON-BOARDING

Our goal is to help you bring your compliance programs online as quickly as possible, without cutting corners.  Our process reduces this overwhelming challenge into manageable weekly sessions.  Compliance work never ends.  However, most Compliance Plus clients are well on their way within the first three months.

ANNUAL AND ONGOING TRAINING

ANNUAL AND ONGOING TRAINING

Personal and constant training is the only way to ensure a “living” compliance program.  Our service includes annual compliance training by a real, live person.  In between annual training, new hires watch online training before signing off on the practices policies.  After that, users receive monthly security awareness update training and testing via our HIPAA Tips app.

ONGOING SUPPORT

ONGOING SUPPORT

Your dedicated healthcare specialist is available to answer all your compliance questions, to help you work out solutions to potential issues, and to keep you up to date on regulatory changes.  When you get your Meaningful Use audit from CMS, your healthcare and IT specialist will help you prepare that critical first response.

Incident and Breach Support

Incident and Breach Support

You hope to never have an incident or a breach, but it’s bound to happen.  When it does, we are standing ready, as part of your incident response team, to help determine the nature and impact of the incident and what steps you must follow.

MORE THAN HIPAA

MORE THAN HIPAA

Your practice has compliance concerns other than HIPAA.  With Compliance Plus, you can manage non-HIPAA policies and organize and retain all your critical compliance documents and evidence.

THE SOFTWARE

  • Software
Risk Analysis

Risk Analysis

Create and maintain your ongoing Risk Analysis. Manage scoped assessments for different areas of your organization. Track and manage your assets, threats, vulnerabilities, risks ...
Detail
Manage Your Policies & Procedures

Manage Your Policies & Procedures

  With Compliance Plus, you have one location to store, update, manage (including revisions) and retrieve ALL your policies and procedures.  No more 3 ring binders! §164...
Detail
Business Associates

Business Associates

Know who your BAs are, who your main contacts are, and ensure you have agreements and assurances from your BAs that they are securing your ePHI. Track security incidents for ea...
Detail
Policy Assignments

Policy Assignments

  Assign policies and procedures to the Security Rule citations they address so you can later see your gaps (see below). Now, you can also assign each policy to your empl...
Detail
Policy ‘GAP’ Reporting

Policy ‘GAP’ Reporting

Always know where you stand.  See, in real time exactly which Security Rule standards and implementation specifications you have covered by your internal policies. More important...
Detail
Security Incident Response & Reporting

Security Incident Response & Reporting

  A single place to log all suspected and actual security incidents (and when necessary, breaches) along with your response and the outcome. Even your workforce (if you ...
Detail
Plan and Track Security Awareness & Training

Plan and Track Security Awareness & Training

Don't let time slip away...keep your staff trained and aware! Plan out your security awareness and other training events ahead of time. Track and record which workforce members a...
Detail
Employee Access & Sign-Off on Policies

Employee Access & Sign-Off on Policies

No more three ring binders! Give each employee instant access to all the policies that are required by their job role(s). Ensure that each employee has read, understands and ag...
Detail
Maintenance Records

Maintenance Records

Track all facility maintenance activities such as repairs, installations and removals. §164.310(a)(2)(iv)...
Detail

THE TEAM

Stewart B. Garner

Stewart B. Garner

CMPE
Healthcare Advisor

[email protected]
205-443-2567

Healthcare Advisor

Stewart specializes in practice startups, employee recruitment and benefits, interim practice management, health information systems, accounts receivable management, and bundled payment models.

Education
Bachelor of Science, University of Alabama

Certifications
Certified Medical Practice Executive (CMPE)

Professional and Community Involvement
Health Information Management Systems (HIMSS) – AL HIMSS Programs Committee Chair
InfraGard Birmingham Members Alliance – Co-Sector Chief of Healthcare Sector
Medical Group Management Association (MGMA), National, Alabama, and Birmingham Chapters

Joni Wyatt

Joni Wyatt

MHA, MHIA, CPHIMS, FHIMSS
Principal, Healthcare Advisor

[email protected]
205-443-2594

Healthcare Advisor

Joni has over 20 years of experience in the healthcare industry, specializing in physician practice management and new practice startups,  physician contracting and compensation models, health information systems, healthcare compliance, and quality measures and reporting.  She is well-versed in new reimbursement models and the legislation driving these initiatives.

Education
Bachelor of Science in Business Administration, College of Charleston
Master of Healthcare Administration, Medical University of South Carolina
Master of Health Information Administration, Medical University of South Carolina

Certifications
Certified Professional in Health Information Management Systems (CPHIMS)

Professional and Community Involvement
Health Information Management Systems Society (HIMSS) – Fellow
Health Information Management Systems Society, Alabama Chapter – Board Officer
Medical Group Management Association (MGMA)

Russ Dorsey

Russ Dorsey

Principal, Chief Information Officer

[email protected]
205-443-2589

Russ specializes in Healthcare Technology, Project Management, Practice Start-up, Software Systems Selection and Implementation, Infrastructure Planning, Vendor Management, Cost Benefit Analysis, IT Security and Risk Assessment, and Disaster Recovery Planning.

Experience

Russ has 31 years of experience in Information Services, spanning multiple industries and a wide spectrum of changing technologies. For 20 of those years, Russ was the founder and CEO of a local IT firm that grew to prominence as one of area’s leading firms for healthcare technology. He was directly responsible for hundreds of clients, involved as a business consultant, project manager and support provider. His experience as both a solution provider and a business owner gives him a unique insight into his client relationships.

He is sought out for his expertise with HIPAA and HITECH, and implementing those standards in real world environments. One of Russ’ core beliefs is outreach and education. He is a frequent speaker at state-wide MGMA chapters and other professional group events and has been published in local industry periodicals.