Business Standards and Compliance

CHA employs rigorous business standards that comply with all accrediting bodies, as well as State and Federal regulations. HIPAA compliance is assured through the use of proprietary information technology that redacts all identifying information, application of stringent internal controls, and compliance reporting through EthicsPoint, (www.ethicspoint.com).

Our business process redacts all patient protected healthcare information, as well as proper names of physicians, hospitals and geographic locations found in medical documents. This proprietary CHA process (patent pending) provides geographic anonymity by distributing redacted records via the internet, preventing subsequent reviewers from even knowing the geographic origin of patient information.

CHA information systems employ state-of-the-art encryption and security features expected of any healthcare information system and consequently Interactive External Utilization Review is fully HIPAA-compliant. Security policies and procedures are available to clients on request. During the course of business, CHA is bound to and honors all provisions of the client hospital’s operative Business Associate Agreement (BAA).

Concerns regarding any CHA business process may be anonymously reported to EthicsPoint via the internet or by telephone:

EthicsPoint or 866-384-4277