BurgiTech Logo


Are you a HIPAA covered entity?

Hey! You just discovered a perk! For a limited time only, we are giving away free Notice of Privacy Practices posters which are required to be posted on your office wall. Contact us today and mention this "Surprise!" and you'll find out that you will not only get your free NPP but another surprise is waiting for you as well!

You can choose your favorate NPP format:

From the Blog


HIPAA Compliance

Like a breeze!
Burgi Technologies > HIPAA Compliance

What Is HIPAA?

HIPAA stands for Health Insurance Portability and Accountability Act which was passed by congress to become the law in 1996.   The goal of HIPAA is to safeguard PHI (Protected Health Information) from any unauthorized access to protect patient privacy. PHI is basically patient information which under HIPAA is protected by the Federal Government.  In the IT world, HIPAA most often refers to the Security portion of the HIPAA rules. The security rule includes a series of guidlines and regulations which provides security provisions to ensure data privacy and protects patients’ medical information.

Do You Need To Be HIPAA Compliant?

The short answer is if you work in any healthcare capacity (i.e. Optometrists, Dentists, all MDs, etc.) you need to be HIPAA compliant. You are a “Covered Entity” according to HIPAA if you are a:

  • A health plan
  • A health care clearinghouse
  • A health care provider who conduct certain financial and administrative transactions electronically. These electronic transactions are those for which standards have been adopted by the Secretary under HIPAA, such as electronic billing and fund transfers.

Any business (i.e.Billing Services, Accounting, IT, Insurance Companies etc.) handling Protected Health Information (PHI), which is basically any patient information, is required to be HIPAA compliant as well. It used to be that only “Covered Entities” have to be HIPAA compliant but since the HIPAA Omnibus Rule went into effect in 2013, business associates must be HIPAA compliant too.


Why Use BurgiTech For Your HIPAA Compliance in Orange County?

As a Certified HIPAA Compliant IT Support Service Provider in Orange County, we provide full service HIPAA Compliance package which includes a thorough HIPAA Security Risk Analysis. Unlike many IT services that call themselves HIPAA Compliant we start by a thorough physical walk through of your offices to pick up any physical HIPAA violations which may exist in your office.  We then perform a full internal and external network vulnerability scan to see if there are any security weaknesses.  We gather all the information in our data analysis and we create a series of detailed reports.  We put this into a risk analysis binder and give it to you in both in physical and digital form.  We put together a plan of how to get your office to becoming completely HIPAA Compliant and put it into your binder.  We can also help you to create a Privacy Policies and Procedures Manual for your office. These are some of the fundamental HIPAA requirements, we simply do it for you.

What We Offer

As a HIPAA Compliant IT Service provider in Orange County, Burgi Tech can help you in your journey to become  HIPAA Compliant. Our HIPAA Compliant IT packages have been expertly designed to ensure your compliance with the latest HIPAA regulations. Our HIPAA Compliance Services include:

The HIPAA Binder

We provide a physical HIPAA Binder which includes all the risk analysis findings with required documentation, as well as the supporting documents. We also provide a digital copy of all the documentation so it could be conveniently and quickly updated.

HIPAA Forms Review

We can review all of your HIPAA forms and make sure they are in compliance with the latest HIPAA regulations. If your are missing any form, we can create one for you. We will review your Notice of Privacy Practices forms and even create a very nice NPP poster board for you to post in your office waiting room.

Management Plan

The management plan is one of the most crucial components of HIPAA Risk Analysis. It is a road map with specifics of how to correct the violations found in the assessment. It is a prioritized list of action items which needs to be addressed one by one in order to become fully compliant.

Physical Walk-through

Unlike most HIPAA risk analysis services who do the analysis remotely and leave the physical portion of the analysis to you, our HIPAA professionals come to your office and perform an actual physical walkthrough to find possible physical violation or risk that may be in your practice.

External Vulnerability

During the HIPAA Risk Analysis, we perform a complete external scan in which we try to penetrate your network from the internet and find all the possible security holes. In this process, the goal is to evaluate your network protection from any external exploits and attacks. We then generate a detailed report that documents all our findings which we include in the HIPAA Binder.

Policies & Procedures

As part of our HIPAA Risk Analysis package, we review the office policies and procedures and revise it to make sure that it complies with the latest HIPAA regulations. If your office does not have any policies and procedures in place, don't worry, we will generate one that fits your practice needs using the latest HIPAA Security best practices.

Contact Us Today To Learn More

    Your Name

    Company Name


    Phone Number