BD Emerson & Titan Intake: HIPAA & SOC 2 Compliance Partners

Overview

Titan Intake is a digital health innovation company whose platform automates the processing of incoming patient records and referrals to expedite the time it takes to process new patient paperwork. With a platform that reads, sorts, and processes Personal Health Information (PHI) instantly, Titan Intake upholds stringent HIPAA standards and is dedicated to building an extra layer of data protection through SOC 2 Type I compliance. Titanic Intake, Inc. sought out BD Emerson’s consulting services to help the company navigate SOC 2 Type I compliance and harden its HIPAA controls to make certain the Titan Intake platform operates at the highest level of data security. BD Emerson guided Titan Intake through the building of SOC 2 Type I controls, the assessment of their existing HIPAA controls, and the implementation of Vanta, BD Emerson’s trusted partner for compliance automation services.

01.

Challenge

Titan Intake’s health innovation platform intercepts 100% of referrals to clients and creates a searchable repository, extracting demographic information, diagnoses, medications, and lab reports. Using an EMR integration, the platform seamlessly updates an existing record or creates a new one. Titan Intake’s technology offers peace of mind to patients, who are informed when their referrals have been received and also provides key insights to providers by tracking referral volume and other relevant data. 

Because Titan Intake stores and organizes a large volume of health information and can integrate with multiple systems, expert insight on HIPAA controls and building a SOC 2 framework were essential.

02.

Solution

BD Emerson began our engagement with Titan Intake by performing a comprehensive gap assessment in order to identify control gaps for HIPAA and SOC 2. Based on this assessment, BD Emerson singled out the controls that needed to be strengthened and those that needed to be implemented. Then, BD Emerson collaborated with Titan Intake’s team to begin the process of integrating Vanta, streamlining the compliance process.

Once Titan Intake had begun using Vanta, BD Emerson got to work on helping the team strengthen its existing HIPAA controls by performing a comprehensive policy review, evaluating Titan Intake’s data access and sharing protocols and performing an analytical review of the system’s security guardrails. Then, BD Emerson moved onto building out robust SOC 2 Type 1 safeguards, adding an additional layer of data security protection to Titan Intake’s platform. 

These controls emphasize role-based access, making sure that only authorized individuals and systems can access certain records. Other controls include safeguards for intrusion detection, vulnerability scans and penetration testing, and the implementation of notification procedures for potential breaches. BD Emerson also assisted Titan Intake in the integration of encryption technologies and data retention/disposal procedures, doubling down on ensuring that patient data remains secure in the platform whether at rest or in transit. Lastly, BD Emerson helped Titan Intake improve the uptime availability of its production systems.

In addition to these technical controls, BD Emerson worked with Titan Intake to define key information security roles and responsibilities, solidifying the Titan Intake team members responsible for maintaining compliance. Finally, BD Emerson and Titan Intake collaborated to build a trust center where potential customers and partners can learn how Titan Intake will manage and protect their data.

03.

Impact

BD Emerson’s engagement with Titan Intake has not only bolstered Titan Intake’s reputation as a trusted health care referral platform, it has demonstrated the company’s commitment to maintaining the highest level of data security in an industry where protecting sensitive data is essential. By achieving SOC 2 Type 1 compliance, Titan Intake sets itself apart from other healthcare software providers, signaling to current and future clients that its platform is equipped to protect sensitive data in an era of ever-evolving security threats.

Titan Intake’s integration of Vanta also ensures that the company is consistently and regularly meeting HIPAA benchmarks and SOC 2 Type 1 controls over time, so that the platform remains compliant, and its clients’ information remains secure. Through Vanta, the Titan’s leadership will continue to make informed decisions based on key insights, improving the company’s strategic decision making process overall.

04.

Conclusion

In conclusion, Titan Intake’s collaboration with BD Emerson has significantly enhanced its data security measures, establishing the company as a leader in the healthcare referral platform industry. The successful implementation of SOC 2 Type I controls and the integration of Vanta have fortified Titan Intake’s HIPAA compliance, ensuring the utmost protection of sensitive patient information. This partnership has not only reinforced Titan Intake’s commitment to data security but also positioned the company to maintain rigorous compliance standards continuously. As a result, Titan Intake can confidently provide reliable and secure services to its clients, fostering trust and driving strategic growth.

05.

Related Services

06.

Quote

Patrick Bruce, CEO of Titan Intake

"BD Emerson was essential in helping our company navigate the daunting process of leveling up our security infrastructure. BD Emerson’s impressive expertise and confidence throughout the process helped our team exceed HIPAA and SOC 2 Type 1 standards quickly, distilling what can be an overwhelming process into a streamlined, organized effort. From day one they began adding value and getting us on course. With their help we delivered on a massive security overhaul with both extreme efficiency and thorough attention to details. Because of BD Emerson’s support, we’ve increased our clients’ trust in Titan Intake and the life-changing work it accomplishes for those seeking specialist referrals."

Other Case Studies

Partners

At BD Emerson, the trust of our partners enhances our credibility, meeting the highest security standards and requirements.