Compliance Management software

Compliance Management Software

Now with Risk Analysis!

HIPAA FLIGHTPLAN was designed from the ground up with you and your EXTREMELY limited time in mind.

No more 'winging it' when it comes to your Security Rule Compliance.  
Become organized, educated and confident in your HIPAA Security Rule Compliance! 

Now, expanded to include policy and procedure management for the Privacy Rule and the Breach Notification Rule!

 
 
      Flightplan Login

      Flightplan Login

Our Growing List of Features

(see pricing below)

Download the Feature & Price List

Quick Reference Dashboard

Don't fall behind. Use the home page dashboard to stay on top of upcoming tasks and expiring items. See lists of upcoming or over due activities, training, reviews and exactly where you stand with the citation coverage of your policies for Security, Privacy and Breach Notification.

Security Rule Citations & Guidance, Plus Privacy Rule and Breach Notification Rule Citations

Easily access the standards and implementation specifications, as well as guidance from HHS, right inside FlightPlan.

Risk Analysis

Create and maintain your ongoing Risk Analysis. Manage scoped assessments for different areas of your organization. Track and manage your assets, threats, vulnerabilities, risks and security measures.

§164.308(a)(1)(ii)(A)

FP_BAs.png

Business Associates

Know who your BAs are, who your main contacts are, and ensure you have agreements and assurances from your BAs that they are securing your ePHI. Track security incidents for each BA so you can evaluate their performance over time.

§164.308(b)(1), §164.308(b)(3)
§164.314(a)(1), §164.314(a)(2)
 

Manage Your Policies & Procedures

With HIPAA FLIGHTPLAN, you have one location to store, update, manage (including revisions) and retrieve your Security Rule policies and procedures.  No more 3 ring binders!

§164.308(a)(1)(i),
§164.316(a),  §164.316(b)(1), §164.316(b)(2)

Policy Assignments

Assign policies and procedures to the Security Rule, Privacy Rule, and Breach Notification Rule citations they address so you can later see your gaps (see below). Now, you can also assign each policy to your employee's job roles.  This allows each of your teammates to know exactly how their job is responsible for ePHI.

§164.316(a),  §164.316(b)(1), §164.316(b)(2)
§164.308(a)(8)

Policy 'GAP' Reporting

Always know where you stand.  See, in real time exactly which standards and implementation specifications you have covered by your internal policies. More importantly, clearly see which ones are still lacking. Just one more way to help you stay on top of your HIPAA compliance.

§164.316(a),  §164.316(b)(1), §164.316(b)(2)
§164.308(a)(8)

Security Incident Response & Reporting

A single place to log all suspected and actual security incidents (and when necessary, breaches) along with your response and the outcome. 

Even your workforce (if you allow) can open and log security incidents they see. A great way to get your whole team involved in protection your ePHI.

§164.308(a)(6)(i), §164.308(a)(6)(ii)

Plan and Track Security Awareness & Training

Don't let time slip away...keep your staff trained and aware! Plan out your security awareness and other training events ahead of time. Track and record which workforce members attended the training - and who didn't. 

§164.308(a)(5)(i), §164.308(a)(5)(ii)

Assign and Track Activities

There are lots of things that need to be done to ensure full compliance. Build an internal compliance team and track your activities in FlightPlan.

§164.308(a)(1)(i), §164.308(a)(2)

Employee Access & Sign-Off on Policies

No more three ring binders! Give each employee instant access to all the policies that are required by their job role(s). Ensure that each employee has read, understands and agrees to follow each policy by having them sign off on each policy.

§164.316(b)(2)(ii)

Web_Sanctions.png

Sanction Employees :-(

No, it's not the most enjoyable thing, but it is necessary and required. Track your sanctions against employees who fail to follow your internal HIPAA policies.

§164.308(a)(1)(ii)(C)

FP_MaintenanceLog.png

Maintenance Records

Track all facility maintenance activities such as repairs, installations and removals.

§164.310(a)(2)(iv)

Information System Activity Reviews

Plan and log your reviews of EHR audit logs and other available logging of your systems. Record the reviews performed by your IT vendor (or in-house staff).

§164.308(a)(1)(ii)(D)

Every Feature & Unlimited App Support Included in the Pro Version
No Down Payment and No Contract

Sign Up Today

 
 

You May Cancel Anytime for Any Reason
(but we're pretty sure you won't want to)

(Pricing Note: A 3 provider practice pays just $125/month, not $375/month.)

Or try HIPAA FLIGHTPLAN Lite -- Only $75/month

Excludes the following features:

Risk Analysis
Sanctions
Security Incident & Reporting
Information System Activity Reviews
"My Policies" for the Workforce
Maintenance Log
Gap Analysis