Site Map

HTI-1 through HTI-4, USCDI v3/v4 & MHMDA compliance auditing overview

Learn about my expertise and approach

Live FHIR R4 compliance audit against federal and state regulatory framework coverage

Sourced cost ranges and public enforcement examples from ONC, HHS OCR, and CMS

Commentary, reviews, and field notes on healthcare data compliance

Privacy laws and regulatory standards

Evidence-based technical guides for MHMDA, HTI-1 through HTI-4, USCDI v3/v4

Engineering context for HTI-1 through HTI-4, USCDI v3/v4, and privacy mandates

Technical implementation guide for My Health My Data Act compliance

Engineering protocols for ONC certification, USCDI v3/v4 mapping, algorithm transparency

Azure Health Data Services vs AWS Comprehend Medical vs Google Cloud Healthcare API

ONC Inferno, HL7 Touchstone, Synthea, SMART App Launcher; public FHIR sandboxes (Epic, Cerner, Fire.ly, CMS BB2.0); SMART on FHIR + OAuth regulatory mapping table

State-level privacy and data laws

GDPR and global privacy frameworks

Frequently asked questions about compliance auditing

Hub page listing all four self-assessment checklists with buyer-segment pick guide

Technical due diligence checklist for Payer/Provider contracts

All 3 parts of CMS-0057-F: Prior Auth API + SLAs, Patient/Provider/P2P API expansions, Public Reporting

CMS-9115-F: Patient Access API, Provider Directory, Payer-to-Payer baseline, ADT, Info Blocking

For health systems, EHR vendors, CHPL-certified Health IT: HTI-1 cert, USCDI v3/v4, DSI, (g)(10) FHIR APIs, RWT, Inferno, surveillance recovery

Strategic technical validation overview

Intake form to scope a Technical Audit Protocol (TAP) engagement