How did your long-standing relationship with the medical center help in delivering the difficult HIPAA message?
That's a complicated [message], one that's been around for a long time, but people really don't understand it. That's really the biggest problem. … The risk assessment, of course, [was] one of the biggest parts of HIPAA compliance. … There was no procedure on how to do it; there were no guidelines on what had to be checked; there were no rules or regulations that somebody could easily … look up. … so that's kind of where they started.
As far as delivering the message, they knew they had to do it … [They were glad that somebody knew] what to do, how to do it and supposedly give them a clear and concise report at the end.