DirectTrust develops its criteria for accreditation through a structured and collaborative process that involves input from industry experts, stakeholders, and healthcare professionals.
The process of drafting criteria for accreditation typically begins with a Needs Assessment, that takes into account emerging technologies, regulatory changes, industry trends, and evolving healthcare challenges. DirectTrust actively engages a wide range of stakeholders to provide valuable input on the development of accreditation criteria. Draft criteria are developed, incorporating existing industry standards, regulations, and best practices relevant to the specific area of accreditation. This may include standards such as HIPAA, HITECH Act, NIST cybersecurity frameworks, and other applicable regulations. Additionally, stakeholder specific criteria are also included.
After criteria are drafted, DirectTrust seeks input from the broader healthcare community by conducting a public comment period during which interested parties can review and provide feedback on the draft accreditation criteria. This feedback is carefully considered in the refinement of the criteria. Based on the feedback received during the public comment period, the drafting and review committee makes necessary revisions to the accreditation criteria. These revisions aim to ensure that the criteria are clear, practical, and reflective of industry standards. Once the criteria are finalized and approved by EHNAC, they become the official standards for accreditation in the designated area. Accreditation programs are established based on these criteria. Periodic reviews and updates occur for accreditation criteria to keep them current with evolving industry standards, regulations, and technology advancements. This ensures that the criteria remain relevant and effective over time.
Through this rigorous and collaborative process, DirectTrust ensures that its accreditation criteria align with the most current industry standards and best practices, promoting excellence in healthcare data exchange, security, and quality of care.