Capabilities » Deploy » Hipaa Hitech Printing Mailing

HIPAA and HITECH Compliance

Printing and Mailing Services for Healthcare Organizations

6% of Health Care Organizations with no security breaches Health Care Organizations with secure PHI
94% of Health Care Organizations with security breaches Health Care Organizations with security breaches

94% of health care organizations suffered at least one data breach in the last two years.

Keep your PHI secure with Graphcom.

Serious Security

Graphcom operates its main facility in full HIPAA/HITECH compliance so our healthcare clients can rest easy knowing that their sensitive data is secure. Our physical and information security policies and procedures are among the most stringent in the industry, and we have Business Associate Agreements (BAAs) with a variety of covered entities.

Our Facility

Restricted access facility - 24/7

  • Physical access to premises limited
  • Access reviewed regularly
  • Video surveillance

Disaster Recovery Plan

  • Redundant power and internet service
  • Offsite data backups at a tier 4 data center
  • Business continuity plan in place and tested regularly

View Case Study Contact Us Today

Our Clients

Accountable Care Organizations Accountable Care
Biotechnology Firms Biotechnology firms
Hospitals and health systems Hospitals and health systems
Long-term care facilities Long-term care facilities
Pharmaceutical companies Pharmaceutical companies
Physician groups Physician groups
Physician groups Rehabilitation centers
Third-party administrators Third-party administrators

Policies and Procedures

Information Security

  • Managed intrusion protection and detection
  • Audit controls
    • Security monitoring
    • Log retention
  • Regular penetration testing
  • Transmission security
    • Secure network (fiber optic)
    • FTPS encrypted transfer
  • HIPAA/HITECH /ISO 27002 compliant policies
    • Security policy
    • HR security
    • Asset management
    • Asset control
    • Cryptography
    • Operations & communications security
    • Information systems acquisition, development, maintenance and disposal
    • Supplier relationships
    • Incident management
    • Business continuity

Workforce Security

  • Pre-employment background screening
  • Mandatory security awareness
  • Mandatory HIPAA training every six months
  • Mandatory Medicare fraud, waste and abuse Training every six months
  • Employees and suppliers checked against the List of Excluded Individuals/Entities (LEIE) and System for Award Management (SAM) lists monthly

Our Commitment

If you're a covered entity, and need a strong, reliable partner to distribute sensitive data in print, we're competent in the requirements. We've got a long, proven track record of providing complex data services and managing sensitive printing and mailing with ease.  

Contact Us Today


*Third Annual Benchmark Study on Patient Privacy & Data Security by Ponemon Institute, sponsored by ID Experts®, December 6, 2012