In 2017 there were many updates and enhancements to our Subscription Plan.
Also, in early 2018, we added compliance products for the General Data Protection Regulation ("GDPR") as promulgated by the European Union ("EU") that goes into effect May 2018. These new products include:
Expresso® Release 1.4 has been enhanced with new reports:
Release 1.4 contains enhanced reporting features with the ability to enter notes (Alerts, Procedures, and Miscellaneous) regarding Risks (e.g. as justification for risk decisions) as well as Security Objects. This key feature enables a CE or BA to document justification for Risk Assessments in the event of an HHS Audit.
The Privacy Rule has been enhanced with the following updates and modifications:
Given the importance that HHS has recently placed on methodologies and frameworks, we have created an Agile Methodology & Risk Management Framework ("RMF") product for Subscribers only. We have been writing about Agile and Risk Management Frameworks for quite some time now. That thinking has permeated our products and underpinned them for quite some time now.
However, we thought that it was critical for our customers (and prospects) to understand that our Subscription Plan is not a set of loosely joined software, products, templates, and tools, but rather all of it is underpinned by a Methodology that helps you establish the kind of Program HHS is interested in seeing stakeholders adopt. That is, a Program that transforms your compliance DNA into a “Culture of Compliance.” Further, our Subscription Plan represents a coherent set of interlocking pieces that ensure coverage of all requirements within the HIPAA Rules (i.e. Privacy, Security, and Breach Notification).