Back in August, HITRUST began supporting the security requirements of the Trusted Exchange Framework and Common Agreement (TEFCA) program. The TEFCA Recognized Coordinating Entity (RCE), The Sequoia Project, has selected HITRUST and the HITRUST Risk-based two-year (r2) Certification as the first certifying body and certification for organizations to prove they comply with the TEFCA security requirements for their Qualified Health Information Network (QHIN) designation.  

TEFCA, which comes from the 21st Century Cures Act, was approved for national-level healthcare interoperability by the U.S. Department of Health and Human Services. TEFCA brings together public and private stakeholders to develop and support an exchange framework for trust policies and practices, as well as a common agreement for data exchange between Health Information Networks. TEFCA specifies strong security safeguards for the protection of TEFCA information under the framework agreements in the Common Agreement, flow-down provisions, and standard operating procedures.  

HITRUST is actively certifying potential QHINs, and the HITRUST r2 Certification is the only assessment recognized by the RCE for meeting the Common Agreement criteria for cybersecurity.   

2W Tech has a Cybersecurity Compliance Program that is designed to support our clients’ compliance obligations like HITRUST. We are also a Microsoft Gold Partner who can help you make the most of Microsoft Azure and Microsoft 365. Call us today to get started.    

Read More:

Key Updates to Datamarts in Power BI

Cyber Insurance is a Must

Back to IT News