Governance, Risk & Compliance

Governance, Risk & Compliance

All great relationships start with a foundation of trust. At DeliverHealth, we build trust by bringing governance, risk, and compliance under one umbrella. This unique approach ensures consistency across information security, audit, and assurance. We also provide ongoing education and training for all staff, because at DeliverHealth, compliance is everyone’s responsibility.

Governance and Regulatory Compliance

As a unified department, we’ve developed one set of governance policies, allowing us to drive standardization and meet regulatory compliance across all departments. We also host internal events such as Corporate Compliance and Ethics Week to empower our employees and reinforce our company-wide culture of compliance.

HIPAA and Privacy

When it comes to protecting patient data and being good stewards of our customers’ data, we go above and beyond. In addition to requiring mandatory training for all employees on HIPAA and privacy policies, we perform routine HIPAA assessments every time there’s a major change in our environment.

 

Third-party Assurance

We regularly assess our third-party applications to identify and address any and all potential risks. The Governance, Risk & Compliance Team vets all vendors thoroughly with an intensive information security review/questionnaire and performs annual reviews. We are also proactively assessing artificial intelligence (AI) to stay on top of any emerging security concerns.

Enterprise-grade Information Security

We build all our solutions using established and trusted information security frameworks and best practices. Additionally, our Governance, Risk & Compliance Team seeks and maintains certifications from leading organizations and works with employees to respond quickly to information security questionnaires.

We have achieved HITRUST i1 certification for our eSOne™️platform, which is the gold standard in healthcare. We are a member of StateRAMP in all participating states. StateRAMP is a nonprofit that supports cybersecurity best practices through education and policy development.

Meet our Governance, Risk & Compliance Leadership Team

Juliana Inhofer, GRCP

Director, Governance, Risk & Compliance

Compliance Officer

Lorrie Barlow, CHPA, CCAP

Manager, Privacy, Risk & Compliance

Privacy Officer

Jason Lee

Manager, Information Security and Governance

Deputy CISO