Bland Compliance Report
Bland is in compliance with security best practices, has implemented and is monitoring comprehensive controls, and maintains policies to outline its security procedures.
Bland is in compliance with security best practices, has implemented and is monitoring comprehensive controls, and maintains policies to outline its security procedures.
In-scope repositories
List of Changes
Sample changes
Source code tool
Customers List
Patient status and admission records
ePHI data sanitization
Customer onboarding
RGEC Charter and minutes
Risk management program established
ITLC charter and minutes
ePHI risk assessment report
List of newly hired employees & contractors
List of terminated employees & contractors
List of active employees & contractors as on date
New Employee and contractor acknowledgement
Security Incident
Incidents list
Incident Management Samples
Breach notification communication
Intrusion detection tool
WAF
Asset register list
Asset maintaining
Vendor list
Vendor management program established
Vendor onboarding
Business associate agreements signed
Access Control and Termination Policy
Baseline Hardening Policy
Board of Directors Charter
Breach Notification Policy
Business Continuity and Disaster Recovery
Change Management Policy
Chief Information Security Officer (CISO) Policy
Company Handbook
Data Classification Policy
HIPAA Internal Privacy Policy
Incident Response Policy
Information Security Policy
Information Technology Leadership Committee Charter
Network Security Policy
Personnel Security Policy
PHI De-identification Policy and Procedure
Risk and Governance Executive Committee Charter
Risk Assessment and Treatment Policy
Vendor Management Policy