Privacy & Security Certification

With the increasing interoperability of electronic health information comes increased privacy and cybersecurity responsibilities.

If you or your organization uses, stores and/or exchanges protected health information (PHI), you are considered a “covered entity” as defined by Texas Medical Records Privacy Act. Learn more about covered entities here.

The Texas Health Services Authority (the Authority) is proud to offer SECURETexas certification to covered entities that demonstrate compliance with Texas and federal privacy and security laws that govern the use of PHI and that can be a mitigating factor for fines or penalties brought under the Texas Medical Records Privacy Act.

By obtaining the Authority's SECURETexas certification, a covered entity has demonstrated compliance with state and federal privacy and security rules. Find out more about the Authority's SECURETexas certification here.

To initiate the SECURETexas certification process, either Contact Us or one of our Preferred Vendors.

To strengthen an organization’s privacy and security protocols, and better position covered entities in obtaining SECURETexas certification, THSA offers Health IT Compliance services. Learn more here.