DirectTrust Privacy and Security

DirectTrust Privacy & Security (DT P&S):  This program accredits against HIPAA Privacy and Security requirements for organizations also pursuing DirectTrust accreditation as a HISP. Beginning January 2020, this program will also be used for organizations pursuing DirectTrust accreditation as a Certificate Authority (CA) and/or Registration Authority (RA).

To begin the application process for the DirectTrust P&S accreditation please complete the application form through our website. Program criteria are located on the criteria page. Please contact DirectTrust for information on the HISP CA and RA program specific Accreditation Programs.


“EHNAC’s DT P&S accreditation not only lends credibility to our HISP services in the marketplace, it lets prospective customers know we are committed to adhering to the industry standards as far as the privacy, security and exchange of healthcare data. The EHNAC team was professional, helpful and a pleasure to deal with.”

-Scott A. Finlay, CEO, MaxMD


 “I believe it is imperative in healthcare technology to be accredited by nationally recognized entities like EHNAC. This proves to our stakeholders and the marketplace how seriously we take accountability on the secure and interoperable exchange of protected health information (PHI). The guidance we receive by being part of EHNAC is immeasurable, and the comprehensive third-party review in areas of privacy, security, confidentiality, technical performance, business practices and organization resources allows our customers and partners to have assurance that Updox follows all required regulations.”

-Kathy Howard, Compliance Director, Updox


 “As one of the largest Health Information Exchanges (HIEs) in New York State, Hixny must continuously ensure the confidentiality, availability, and integrity of the Protected Health Information (PHI) it has been entrusted with. EHNAC’s DT P&S accreditation allows Hixny to demonstrate this to its various stakeholders, as the accreditation assesses the quality and strength of Hixny’s privacy and security framework through a plethora of controls across various domains. Hixny is proud to have achieved its original EHNAC accreditation in 2014 and has successfully reaccredited on a biennial basis since. EHNAC’s accreditation relies on a robust and informative framework. And, while the process requires a great deal of time and effort (as any robust framework should), we have found EHNAC’s process to be very efficient, user friendly, and professional. We commend EHNAC for their process and their knowledgeable and responsive staff!”

-Taiymoor J. Naqi, JD, MBA, CHP, Chief Compliance Officer & Vice President of Privacy and Security,Hixny


Also, are you looking for hands-on support to assist you through the pre-assessment steps, readiness planning process and more? Learn about EHNAC’s Consulting and Advisory Services which have been designed to support the Direct Trusted Agent Accreditation Programs.