April 2016



Dumatek is providing free HIPAA Security training in the Los Angeles area, valued at 350$.

Training can only be availed by companies who have been contacted directly by Dumatek.

Free Training will only be available for the month of April 2016


March 2016 

Phase 2 of HIPAA Compliance Audits Now Underway

The OFFICE FOR CIVIL RIGHTS (OCR) under the DEPT. OF HEALTH AND HUMAN SERVICES (HHS.GOV) just last week published their information regarding the PHASE 2 HIPAA Audits now underway. Posted is how they are collecting information from covered entities, what is new in the way they do HIPAA audits, and what you need to do to be prepared for this audit.

If you are a DUMATEK customer, you may be contacted so we can update your compliance documentation Or so we can conduct another assessment to update the company HIPAA security RISK ANALYSIS.

If you are not a DUMATEK customer, feel free to give us a call as we can surely help you with your HIPAA Security compliance efforts especially if you do not have a RISK ANALYSIS. Not having a RISK ANALYSIS is considered "willful neglect".

Also, for proper orientation of the laws, ask DUMATEK about their HIPAA training program.


-       have an updated RISK ANALYSIS

-       know your security team

-       have policies and procedures

-       have documentation for remediation activity

-       have signatures of staff of proof of training

for more information on the Phase 2 Audits : 


January 2014

BY April 1st, 2014, Microsoft will no longer support the Windows XP Professional Operating System.  All HIPAA covered entities and business associates, as well as sub-contractors, would need to replace these legacy systems into Windows 7 Professional or higher Professional Operating Systems to continue to maintain the implementation specifications required under the technical safeguards of the HIPAA Security Final Rule.  This only applies to HIPAA covered entities.

HIPAA Security requires covered entities to periodically evaluate the effectiveness of the security measures implemented to mitigate, if not eliminate the risks and vulnerabilities to e-PHI identified by a HIPAA Risk Analysis.   Under an evaluation, it should recommend changing these legacy systems because it would simply be reasonable and appropriate for risk management.  Microsoft is ceasing the support for security updates against the constantly evolving tech-threats we address, especially when connected to the world through our internet service provider (ISP).


Identify how many Windows XP Professional computers you have in your company and replace them with Windows 7 Professional or a “higher” Professional Operating Systems before April 1st, 2014.  This will be true for Windows 2003 Server too.  The new server is Windows 2008 which is good till tear 2020 (budget for $4000.00 if you are currently using a Windows 2003 Server).


For over a decade, Dumatek has guided many covered entities and business associates with their compliance efforts to HIPAA Security as well as supply them with their computer network needs.  A standard “low-cost” Windows 8.1 Professional workstation is made available to quickly replace the old Windows XP Professional systems.  This includes attaching the systems to the pre-existing network and re-establishing the resources needed for the system user to conduct his/her job.  This comprises the connection of the new computer system to the company’s EHR or medical practice management system.  Taking this approach allows a covered entity to get this issue addressed in the most cost effective and expediently quick manner as well as get a quick review of the status of their HIPAA Security compliance.  ($868.00 per system)

There are financing options available as well since for some entities, this would be a full overhaul on the company’s computer network infrastructure.

Please contact DUMATEK at 714-460-5508 for more information, or assistance.

Want to check out DumaTek-PI? Click HERE.