Background
Brightsquid is a trusted leader in secure communication, providing a HIPAA compliant email solution for dentists and other healthcare providers. Brightsquid was under a time crunch because they needed to meet HIPAA requirements due to contract negotiations with several healthcare providers. 
Brightsquid placed their trust in SecurityMetrics to provide them with a HIPAA audit, and SecurityMetrics’ qualified auditors were able to successfully guide Brigthsquid through the HIPAA requirements.
“Professional, knowedgeable, and excellent to work with. The process that securitymetrics has established with Suralink made it clear what we needed to provide as proof of meeting HIPAA requirements. We understood what was expected of us and were never left guessing thanks to the information SecurityMetrics provided.”
- Francis Chew
Senior Architect
HIPAA Challenges You Faced
- Understanding our responsibility for audit logs, server logs, and PHI data as an organization that provides secure communications between HIPAA entities
- Lack of defined administrative/organizational policies and procedures for HIPAA
- Production environments were not segregated from non-production environments
Resolving Challenges with SecurityMetrics' Help
- SecurityMetrics provided us with customizable HIPAA privacy and security policy templates to ensure we were meeting the requirements outlined in the HIPAA Privacy, Security, and Breach Notification Rules
- SecurityMetrics explained better processes and policies for server hardening
- SecurityMetrics informed us how we could better secure our production environment with proper network segmentation
Goals Achieved Working with SecurityMetrics
- Successfully met HIPAA requirements specified by healthcare providers
- Met deadline with healthcare providers, which allowed us to bring on more business
- Formed a partnership with an experienced HIPAA partner that provides exceptional support