One of the interesting announcements coming out of HIMSS was a HIPAA Compliance Dashboard that was announced by INetU. The concept of a dashboard that shows you your HIPAA compliance is fascinating for me. The key question I’ve asked myself is can HIPAA compliance be automated into a dashboard?
Here’s a look at the HIPAA Compliance Dashboard they’ve created:
INetU claims that the dashboard will keep track of both the business associate’s (in this case INetU’s) HIPAA compliance and the covered entities compliance with HIPAA. I need to dig into it some more, but I’d love to hear from some other HIPAA experts out there. Aren’t there pieces of HIPAA compliance that can’t be automated to a dashboard? I’d love to be proven wrong.
I also think the Dashboard is a nice building block to doing security beyond just HIPAA. It reminds me of this post titled, “Why HIPAA isn’t Enough to Keep Patient Data Secure.” This dashboard could provide a deeper look into security beyond just HIPAA. Although, it makes sense why they’re leading with HIPAA since organizations don’t mind coughing up money to ensure their HIPAA compliant.
What do you think of this idea? Can HIPAA Compliance benefit from a dashboard like this? Of course, this can be taken too far as well. We don’t need CIO’s that become complacent, because the dashboard says “HIPAA Compliant.”