Compliance

Our Commitment
Custom Computing Corporation (CCC) is committed to safeguarding its reputation and integrity through compliance with applicable laws, regulations, and ethical standards in each of the markets in which it operates. Our employees are expected to adhere to all state and federal regulations as well as our business values and ethical standards. Our management team is responsible for ensuring we remain in compliance and conduct business with honesty, integrity, and commitment.

HIPAA-HITECH
The Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act defines policies, procedures, and processes that are required for companies that store, process, or handle electronic protected health information (ePHI).
At CCC, we take our responsibilities towards client & patient confidentiality very seriously and have dedicated both time and resources to train our workforce; develop and implement administrative, physical, and technical safeguards to protect PHI/ePHI shared by our clients.
Our HIPAA Compliance Program Includes:
- Designation of a HIPAA Privacy and Security Compliance Officer(s)
- The development of an annual HIPAA awareness and education program for our employees
- An Employee Sanctions Policy should any HIPAA compliance violations occur
- Annual risk assessment to identify and document any area of risk associated with the storage, transmission, and processing of ePHI and have analyzed the use of our administrative, physical, and technical controls to eliminate or manage vulnerabilities that could be exploited by internal or external threats.
- Enforcing the use of technological protocols such as: access controls, integrity procedures, firewalls, activity monitoring and other audit mechanisms to record user access to information systems that use ePHI, use of encryption, automatic logoffs, password management procedures, VPN tunnels, etc.

CCC Is Committed To:
-
Ensuring compliance with the regulatory requirements of HIPAA-HITECH.
-
The continual assessment and refinement of our safeguards to mitigate risk.
-
Ensuring that ePHI is encrypted at all times.
-
Maintaining both PHI and ePHI within our possession in a secure environment.
-
Monitoring access to the office environment and systems that contain PHI/ePHI.
ONC Certification
On 12/23/2017 Custom Computing Corporation (CCC) achieved the Office of the National Coordinator for Health Information Technology (ONC-Health IT) 2015 Edition Health IT Module Certification via Drummond Group LLC, an Authorized Certification Body (ACB) that has been authorized to test software for compliance with the requirements of the federal government’s program. The stamp of approval designates that Freedom Medical Systems® EHR v5.0 r3 offers the functionality that enables eligible providers and hospitals to meet Meaningful Use requirements, qualifying these organizations to receive payments under the ongoing EHR adoption program.

To earn the certification, Freedom Medical Systems® EHR v5.0 r3 was tested to be in accordance with applicable standards and certification criteria put forth by the Department of Health and Human Services (HHS).
This Health IT Module is 2015 Edition compliant and has been certified by an ONC-ACB in accordance with the applicable certification criteria adopted by the Secretary of Health and Human Services. This certification does not represent an endorsement by the U.S. Department of Health and Human Services.
To learn more about our ONC-ACB Certification, please visit our Certification Statement page.
About Drummond Group
Drummond Group LLC is a global software test and certification lab that serves a wide range of vertical industries. In healthcare, Drummond Group LLC tests and certifies Controlled Substance Ordering Systems (CSOS), Electronic Prescription of Controlled Substances (EPCS) software and processes, and Electronic Health Records (EHRs) – designating the trusted test lab as the only third-party certifier of all three initiatives designed to move the industry toward a digital future. Founded in 1999, and accredited for the Office of the National Coordinator Health IT Certification Program as an Authorized Certification Body (ACB) and an Authorized Test Lab (ATL), Drummond Group LLC continues to build upon its deep experience and expertise necessary to deliver reliable and cost-effective services.

About The ONC Health IT Certification Program
The Office of the National Coordinator for Health Information Technology (ONC) Health IT Certification Program (Program)is a voluntary certification program established by the Office of the National Coordinator for Health IT to provide for the certification of health IT. Requirements for certification are established by standards, implementation specifications and certification criteria adopted by the Secretary. The Program supports the availability of certified health IT for its encouraged and required use under other federal, state and private programs. The Program is run as a third-party product conformity assessment scheme for health information technology (health IT) based on the principles of the International Standards Organization (ISO) and International Electrotechnical Commission (IEC) framework.

Financial
As a third party service provider that provides services to financial organizations, CCC is subject to applicable financial regulations such as Sarbanes Oxley Audits and Gramm-Leach-Bliley Act. In this role, CCC has successfully demonstrated its commitment to compliance with all requirements in support of our financial clients. Our policies and procedures are continually being reviewed, updated, and modified to ensure ongoing compliance to regulations within the markets our financial clients operate.