Healthcare Information Technology

Managing a medical practice is a constant challenge, even more so in today's competitive environment. With high overhead, high traffic and high pressure, medical records and EMR software have become essential to today's medical offices. CCR offers powerful, easy-to-use EMR software that makes managing records, appointments and billing easier and more efficient than ever before. Keeping track of everything from appointments to billing is as easy as a few clicks of the mouse.

Medical report and stethoscope lying over x-ray

Center for Computer Resources is committed to providing comprehensive Health Information Technology (HIT) consulting services to our clients. We have dedicated resources to assist you in meeting the challenges of todays healthcare standards, while continuing to offer quality care to your patients. We focus on HIT combined with provider-patient quality care using successful, evidence-based processes to develop accurate, comprehensive and reproducible reporting. Our objective in offering these services is to provide you with current and reliable information, delivered to you, in a professional and efficient process designed to meet government compliances and revenue generating programs. Contact CCR today to discuss our services such as:

  • Meaningful Use Measure Review
  • Identify and document deficiencies and inconsistencies
  • Documentation of suggested processes to improve percentages
  • Review of current workflow and process to improve any measure deficiencies
  • Public Health Measure submission information
  • Security Risk Analysis Review and/or Report
  • Audit document preparation

Audit Preparation

  • Audit document preparation List
  • Sample audit request sheet
  • Audit submission process information
  • Review of requested Audit documents
  • Review checklist of Security Risk Analysis documents (this is review only and does not include conducting the Security Risk Analysis, see SRA option below)

Audit Process and Submission Support

  • Everything from Option 3, in addition:
  • Review deadline dates, set up timeline for document preparation
  • Review provider specific request for pre-or post-payment Audit information and measures
  • Create custom Audit Submission Zip File of all request documents
  • Documentation of submission, dated receipt with auditor information reference sheet

SRA SAQ to include:

  • Security Risk Analysis Provider specific Security Assessment Questionnaire
  • Upon client completion of SAQ, submit to CCR for review, testing of system/network
  • Completed SRA SAQ, testing result documents and remediation report given to client
  • Develop remediation options based on results from SAQ and Network Testing
  • One hour of consultation with of delivery of SAQ

SRA SAQ Consultant Support:

  • Review of SRA SAQ Report findings
  • Assistance working with client to develop strategies and process to manage successful remediation, in compliance with CMS mandates

Meaningful Use:

  • Documentation of CMS Hi Tech Act and modification of Core, Menu and CQM measures
  • CMS Modifications between each Stage
  • Core, Menu and Clinical Quality Measure Review
  • How to analysis your measure percentages
  • How to develop process and/or workflow modification to successfully achieve MU
  • How to document MU for successful Attestation
  • Determining if an interface is mandatory or optional
  • Public Health measures explanation of compliance, documentation and possible interface needs

One-time HIPAA Compliance Package

  • Not every HIPAA-Covered Entity or Business Associate knows that they are required to have a risk assessment performed, and some that do know may have limited resources to invest in their patients' (or their own) protection. For these organizations, we can offer a One-Time HIPAA Compliance package. This package will include all of the documents automatically organized and prepared by the module, including: The HIPAA Policy and Procedures Document, the HIPAA Risk Analysis, the HIPAA Management Plan, and the Evidence of HIPAA Compliance. These core documents, along with all of the supporting documents constitute a core offering and CCR will help you meet your responsibility of having an audit conducted.

HIPAA Assessment & Remediation

  • Conducting a comprehensive Risk Assessment is one thing, but that really should not be the "end" … but a "means" to the end. Our assessment is more-than-likely going to uncover a number of issues that need to be addressed. Some of these issues may be nothing more difficult than training an employee to update passwords. But others could be much more serious and involved, like changing the data back-up and recovery program. Our HIPAA Compliance tool will provide a Risk Score Matrix that will prioritize the work that should be done based upon potential impact to the business and likelihood of occurrence. As our client you will need to engage CCR in a Remediation Project that will address those issues that carry the highest risk, and highest fines.

Managed Compliance Service

  • Organizations are not static, nor are their networks. New computers, software, mobile devices, equipment and files are continually being added onto the network throughout the year. And even with a relatively stable IT environment, most organizations' employees come and go, and change positions within the organization at a regular rate. The HIPAA assessment you perform today has a "shelf-life." How long that is really depends on a number of factors, including the type of the business, size of the organization, and speed of change. Best practice is to have a HIPAA assessment performed at some regular interval (but no less than once a year as required by law) to ensure that the organization is not only compliant at the time of the Risk Analysis – or upon completion of the follow-on remediation project – but that it REMAINS compliant at all times. After your initial assessment and remediation project is complete, we can set you up with a schedule of periodic re-assessments, which we call Monthly Risk Profiles, to ensure continued on-going compliance.