ATLANTA – July 11, 2011 – Compliance 360, a leading provider of Software-as-a-Service (SaaS) solutions for enterprise governance, risk management and compliance (eGRC), today announced that it has automated the Compliance Program Assessment Tool, published by the New York State Office of Medicaid Inspector General (NY OMIG), in the Compliance 360 system. This enhanced capability, which is available now and free of charge for all Compliance 360 customers, will allow healthcare organizations to maintain a continually audit-ready state in an era of increased regulatory scrutiny. Compliance 360 will host an online demonstration of this new functionality on Thursday, July 14, at 2:00 p.m. EDT.

The Patient Protection and Affordable Care Act mandates that healthcare organizations implement compliance plans. Regulators, including NY OMIG, are raising the stakes by proactively publishing compliance effectiveness assessment tools. Based on its unique publish-subscribe capabilities, the Compliance 360 system is ideally suited for automating these tools. Healthcare organizations can streamline processes, minimize overhead and ensure that nothing is overlooked as they maintain a continually audit-ready state. Regulators benefit from well-organized data that is accurate, current and easily accessed online.

The NY OMIG Compliance Program Assessment Tool is structured into eight sections, which include a series of assessment questions with “Yes” and “No” answers, with provisions for identifying supporting evidence and compliance gaps.

Compliance 360’s automation of this tool includes all of the assessment questions in each of the eight categories. For each question, the assessment will result in a task created based on “Yes” and “No” answers. A “Yes” answer will result in a task created for linking evidence documents back to the requirement using the Virtual Evidence Room™. A “No” answer will result in a task created to identify the compliance gap(s) and initiate remediation actions. Online dashboards and reports show the overall compliance status with all supporting documents, completed and open tasks, task owners, due dates and more. Compliance officers can view the overall compliance status at any time and receive alerts regarding critical tasks that are overdue.

“As healthcare compliance professionals increasingly face demands to proactively demonstrate the effectiveness of their compliance programs, automation such as this will help them ease the potential burdens and prove that their compliance programs are working,” said Steve McGraw, president and CEO, Compliance 360. “NY OMIG has set the de facto standard for healthcare by publishing the industry’s first definitive compliance assessment tool for its constituents. Going forward, we expect to see similar assessment tools published for other regulated industries, and we plan to provide similar integrations for our customers as these tools are published.”

Compliance 360 will host an online demonstration of the NY OMIG Compliance Program Assessment Tool automated in the Compliance 360 system on Thursday, July 14, at 2:00 p.m. EDT. Healthcare providers and health plans can register to attend the demo at www.compliance360.com/NYOMIGdemo.

About Compliance 360
Ranked as the fastest growing GRC software vendor in Inc. Magazine’s 2010 list of America’s fastest growing private companies , Compliance 360 is the leading provider of enterprise governance, risk management , compliance and audit management solutions for companies that operate in regulated industries.  With these solutions, organizations reduce risks, improve efficiencies and protect their brands using a single platform to address their comprehensive GRC requirements.  The Compliance 360 Software-as-a-Service (SaaS) solution suite helps organizations address policy and procedure management, regulatory compliance management , internal and external audits , third party risk and vendor management, contract management, incident management, fraud, waste & abuse, surveys, accreditation, enterprise risk management and IT governance. Compliance 360 is headquartered in Atlanta and assists more than 225,000 users every day in a variety of complex, regulated business environments, including healthcare, insurance, financial services and others.  For more information, visit www.compliance360.com .

Disclaimer: The New York Office of the Medicaid Inspector General (OMIG) permits Compliance 360 to use OMIG’s
Provider Self-Assessment Tool – 2010 within the Compliance 360 system. OMIG’s permission is not an endorsement
of the Compliance 360 system.

Editor’s Note: Compliance 360 is a registered trademark of Compliance 360, Inc. Virtual Evidence Room is a registered service mark of Compliance 360, Inc. Any other trademarks are recognized as proprietary to their owners.

ATLANTA – Feb. 22, 2011 – Compliance 360, a leading provider of Software-as-a-Service (SaaS) solutions for enterprise governance, risk management and compliance (eGRC), today announced the availability of its next-generation reporting system. The new system combines the wizard-driven flexibility of full report customization with the ease, efficiency and low overhead of an online-hosted solution.

In response to the increasing demand for more flexible reporting options and the desire of end users to manage and customize reports without dependence on IT resources, the latest version of the Compliance 360 reporting system provides a range of reporting options to address the needs of both non-technical and advanced users.

The application provides pre-configured report options and templates, and an easy-to-use wizard that guides users through the creation, customization and execution of reports with a simple step-by-step approach. All data stored within the Compliance 360 suite of GRC applications is available for live, up-to-the minute reporting based on users’ security permissions. There is no need to incur the overhead of separate, mirrored data stores for reporting.

“To meet the needs of organizations today and in the future, GRC software platforms must be adaptable and agile,” said Steve McGraw, president and CEO, Compliance 360. “The Compliance 360 system is evolving rapidly and now provides the advanced reporting tools that business users need to define, execute and report on critical GRC information free of dependence on IT. Our objective is to provide customers with the freedom of choice to use the method of reporting that best fits their needs; whether it is standard, off-the-shelf reports, reports produced by our advanced SaaS-based reporting system or exporting information to a data warehouse for advanced analytics.”

Features of the new reporting system include:

* Easy-to-use report wizard that guides users through the creation and execution of reports, including variable sorting and grouping, field selection, calculations, filters and report selection criteria. Dynamic report previews are updated as selections are made by the user.
* Advanced filtering capabilities that support nesting of criteria and multiple operators such as “AND”, “OR” and “NOT” to precisely retrieve relevant data.
* Guided setup and configurable reporting options provide the ability to schedule reports to run on a one-time or recurring basis with automated e-mail notifications to users.

“The release of the next-generation reporting system expands our capabilities to provide advanced reporting options that our customers need,” said Bob McGowan, vice president of product management, Compliance 360. “They now have the versatility to define reports that include exactly the data they need through a flexible reporting system integrated into the SaaS GRC solution, without the high cost and overhead usually associated with on-premise applications.”

The new reporting system is generally available now for all Compliance 360 customers.

About Compliance 360
Ranked as the fastest growing GRC software vendor in Inc. Magazine’s 2010 list of America’s fastest growing private companies , Compliance 360 is the leading provider of enterprise governance, risk management , compliance and audit management solutions for companies that operate in regulated industries. With these solutions, organizations reduce risks, improve efficiencies and protect their brands using a single platform to address their comprehensive GRC requirements. The Compliance 360 Software-as-a-Service (SaaS) solution suite helps organizations address policies and procedures management, regulatory compliance management , internal and external audits , third party risk and vendor management , contract management, incident management, fraud, waste & abuse , surveys, accreditation, enterprise risk management and IT governance. Compliance 360 is headquartered in Atlanta and assists more than 225,000 users every day in a variety of complex, regulated business environments, including healthcare, insurance, financial services and others. For more information, visit www.compliance360.com .

Editor’s Note: Compliance 360 is a registered trademark of Compliance 360, Inc. Virtual Evidence Room is a registered service mark of Compliance 360, Inc. Any other trademarks are recognized as proprietary to their owners.

Media Contact
Ashleigh Egan
Articulate Communications, Inc.
Tel: (212) 255-0080, ext. 12
compliance360@articulatecomms.com

Atlanta, GA. – November 30, 2010 – Compliance 360, a leading provider of Software-as-a-Service (SaaS) solutions for enterprise governance, risk management and compliance (eGRC) today announced that its popular “Cash-for-Clunkers” trade-in program for healthcare providers has been extended until May 31, 2011. The program provides discounts to healthcare providers that initially invested in low-end, limited-functionality software applications for managing overpayment recovery audits including Medicare and Medicaid Recovery Audit Contractor (RAC) Audits and Medicaid Integrity Contractor (MIC) audits.

Congress and the President expect the recovery of Medicare and Medicaid overpayments to fund many of the new healthcare programs. The goal is a reduction in improper payments of at least 50% by 2012. In support of these lofty goals, provider reimbursements will come under increasing scrutiny as the current recovery audit programs expand in 2011 to include:
• RAC for Medicaid, in addition to the current Medicaid Integrity Contractor (MIC) audit program
• RAC program expansion to include Medicare parts C and D

“As the anticipated risks of RAC and MIC audits became a reality in 2009 and 2010, many healthcare providers made hasty software selections and are now learning that their software, with limited flexibility, is providing only minimal revenue protection,” said John Brooke, General Manager of Healthcare for Compliance 360. “As the revenue recovery audits increase in 2011, these limitations are likely to become even more pronounced.”

The Compliance 360 Claims Auditor, licensed for use in over 900 healthcare facilities nationwide, is proven to help healthcare providers take control of medical claims audits and appeals, and protect their legitimate revenues from being caught up in the recoupment of overpayments. With advanced workflow, healthcare providers can manage the complexity of multiple, simultaneous recovery audits to ensure that due dates are not missed. Serving as the “Virtual Audit Coordinator”, the Claims Auditor automatically manages each step in the response and appeals process, allowing key personnel to concentrate on high-risk areas and monitor the overall program. The Claims Auditor also serves as the claims audit system of record, enabling healthcare providers to establish a common point of control for managing all claims audits including RAC, MIC, MAC, CERT, PERM, ZPIC and commercial payor audits.

“In response to the expanded audit programs planned for 2011 as well as requests from providers across the country, we are happy to extend our Cash for Clunkers program,” added Brooke. “Under the proposed regulations for expanded audits, States may use their current administrative appeals process or may modify the process for Medicaid RAC appeals. Adapting to these yet-to-be–published appeals processes, that will vary from state-to-state, will create a new set of challenges for providers and especially for those using software solutions with limited flexibility. Fortunately with Compliance 360, providers can easily adjust as appeals processes are changed by simply tuning the workflow to match the process.”

Healthcare providers interested in taking advantage of the “Cash-for-Clunkers” trade-in program, should contact Compliance 360 at sales@compliance360.com or (678)992-0262. The program is currently scheduled to run through May 31, 2011.

About Compliance 360 for Healthcare
Compliance 360 is the leading provider of enterprise governance, risk management, compliance and audit management solutions for healthcare providers. With these solutions, healthcare providers reduce risks, improve efficiencies and protect their brands using a single platform to address their comprehensive GRC requirements. The Compliance 360 solution for healthcare addresses the need for policy management, centralized regulatory management including HITECH, HIPAA, EMTALA, STARK and others, Joint Commission Accreditation, OIG corporate integrity agreements (CIA), False Claims Act (FCA) Compliance, adverse-event management, contract management, surveys, remediation projects, claims audits and denials, Medicare RAC audits, Medicaid MIC Audits, self assessments, internal audits, and enterprise risk management. Over 150,000 active users rely on Compliance 360 everyday to manage their risk, audit and compliance programs. To learn more about the Compliance 360 solution for healthcare, visit www.compliance360.com/healthcare.

Editor’s Note: Compliance 360 is a registered trademark of Compliance 360, Inc. Virtual Evidence Room is a registered service mark of Compliance 360, Inc. Any other trademarks are recognized as proprietary to their owners.

www.compliance360.com/thirdpartyrisk

Compliance and risk management are growing in importance as managed care organizations increasingly turn to delegated entities to reduce operating costs and streamline operations. Amid the benefits of outsourcing, there lies a significant risk. Simply stated, responsibility and liability cannot be outsourced.

Managed care organizations now face increasing pressure from their regulators, to demonstrate that they are proactively taking steps to mitigate risks by ensuring compliance among their delegated entities.

Join us for this presentation with Tom Goddard and Ellen Pauley of Integral Healthcare Solutions, LLC, in which they will outline best practices for managing and minimizing third party risks with delegated entities. The presentation will focus on:

• Comparison of the definitions of Delegation used by NCQA and URAC
• Recommended areas of focus in due-diligence before engaging with a delegated entity
• Recommendations for crafting agreements with delegated entities
• Best practices and common deficiencies in the oversight of delegated entities
• Discussion of the future of managing delegated entities including trends in outsourcing, trends in regulation and accreditation, and trends in technology

Real world examples will be used to illustrate key points and recommendations

Who Should Attend:

• CFO and CEOs
• Chief Risk Officer
• Chief Compliance Officer
• Chief Security Officer
• Legal/Regulatory Counsel

About the Presenters:

The CEO of Integral Healthcare Solutions, LLC, Thomas G. Goddard, JD, PhD, is one of the industry’s premier URAC analysts. He served as Chief Operating Officer and General Counsel of URAC, and since leaving that organization has over seen a firm that has specialized for 9 years in working with applicants for URAC accreditation.

Ellen Pauley, RN, MS, served as Assistant Director of Accreditation Operations/ Surveyor at NCQA’s office in Washington, DC. Over the last 18 years, she has served both as an NCQA review and as one of the nation’s premier consultants to organizations seeking NCQA accreditation.

Steve McGraw, President and CEO, Compliance 360

The healthcare reform bill passed into law as the Patient Protection and Affordable Care Act (PPACA) on March 23, 2010 creates many new and pending regulatory challenges for healthcare providers and health insurance organizations.

At Compliance 360, we have analyzed the legislation section by section and have identified the key areas where Compliance 360 can greatly assist an organization in managing this prodigious federal legislation. The end result of this analysis is a series of whitepapers outlining best practices for PPACA compliance and audit Requirements. In the coming months as the new healthcare mandates are rolled out, Compliance 360 will publish a series of papers outlining the solution’s capabilities and benefits related to the key regulations and audit requirements.

To request the first paper in the PPACA compliance framework series, please visit www.compliance360.com/HealthcareReform.

Steve McGraw, President and CEO, Compliance 360

Recently, the United States Sentencing Commission voted to modify the Federal Sentencing Guidelines, including the standards for an effective corporate compliance and ethics program. Under the Federal Sentencing Guidelines, a convicted organization may be eligible for a reduced sentence if it has established an effective compliance and ethics program. The Guidelines describe the key attributes that a compliance program must exhibit for the organization to be eligible to receive benefits such as reduced fines, reduced sentences or deferred prosecution.

Forward thinking organizations seeking to develop and foster an effective compliance and ethics program are turning to Governance, Risk Management and Compliance (GRC) software applications to help facilitate this endeavor. We invite you to download the white paper, “The Seven Elements of an Effective Compliance and Ethics Program” to learn more about the seven elements of an effective compliance and ethics program and the key capabilities that a GRC software solution should have in order to serve as the foundation for an effective compliance and ethics program.

Atlanta, GA. – June 21, 2010 – Compliance 360, a leading provider of Software-as-a-Service (SaaS) solutions for enterprise governance, risk management and compliance (eGRC) today announced a “Cash-for-Clunkers” trade-in program for healthcare providers that initially invested in low-end, limited-functionality software applications for managing overpayment recovery audits including Medicare Recovery Audit Contractor (RAC) Audits and Medicaid Integrity Contractor (MIC) audits.

The Compliance 360 Claims Auditor, licensed for use in over 800 healthcare facilities nationwide, helps healthcare providers take control of medical claims audits and appeals, and protect their legitimate revenues from being caught up in the recoupment of overpayments. With a sophisticated workflow engine, healthcare providers can manage the complexity of multiple, simultaneous recovery audits to ensure that due dates are not missed. Serving as the “Virtual Audit Coordinator”, the Claims Auditor automatically manages each step in the response and appeals process, allowing key personnel to concentrate on high-risk areas and monitor the overall program. The Claims Auditor also serves as the claims audit system of record, enabling healthcare providers to establish a common point of control for managing all claims audits including RAC, MIC, MAC, CERT, PERM, ZPIC and commercial payor audits.

“As RAC audits have transitioned from a limited demonstration status to a full nationwide rollout over the last 18 months and MIC audits have also been ramping up, many hospitals have taken a conservative approach, investing in software solutions with very limited functionality, providing only minimal revenue protection. Given the government’s track record of recurring postponements of new regulatory programs, this approach is quite understandable,” said John Brooke, General Manager of Healthcare for Compliance 360. “However, now that the Medicare and Medicaid revenue recovery programs are rolling out and even accelerating as a result of the highly publicized focus on cost savings and anti-fraud initiatives in the new healthcare reform law, healthcare providers are seeking robust, replacement solutions, proven to protect their legitimate revenues from being recouped. For those providers that are now discovering their initial choice of a limited solution is not providing adequate revenue protection, we are offering discounts in the form of trade-in credits when they upgrade to the Compliance 360 Claims Auditor. Based on the increased activity we’ve seen since the passage of healthcare reform, we expect this program to be very popular with healthcare providers.”

The Compliance 360 Claims auditor will be featured at the HFMA 2010 ANI Healthcare Conference in Las Vegas, June 20-23. Healthcare providers interested in taking advantage of the “Cash-for-Clunkers” trade-in program, should contact Compliance 360 at sales@compliance360.com or (678)992-0262. The program is currently scheduled to run through November 30, 2010.

About Compliance 360

Compliance 360 is the leading provider of enterprise governance, risk management, compliance and audit management solutions for healthcare.  With these solutions, healthcare providers and insurance companies reduce risks, improve efficiencies and protect their brands using a single platform to address their comprehensive GRC requirements.  The Compliance 360 solution for healthcare addresses the need for policy management, centralized regulatory management including HITECH, HIPAA, EMTALA, STARK and others, Joint Commission Accreditation, OIG corporate integrity agreements (CIA), False Claims Act (FCA) Compliance, adverse-event management, contract management, surveys, remediation projects, claims audits and denials, Medicare RAC audits, Medicaid MIC Audits, self assessments, internal audits, and enterprise risk management.  Over 150,000 active users rely on Compliance 360 everyday to manage their risk, audit and compliance programs.  To learn more about the Compliance 360 solution for healthcare, visit www.compliance360.com.

Editor’s Note: Compliance 360 is a registered trademark of Compliance 360, Inc. Virtual Evidence Room is a registered service mark of Compliance 360, Inc. All other trademarks are recognized as proprietary to their owners.

http://www.compliance360.com/Mailers/2010_5_Webinar_HITECHBMark_homepage.asp

During our January 13th Webcast, Dr. Larry Ponemon, chairman and founder, Ponemon Institute, and Raj Chaudhary, principal with Crowe Horwath LLP, provided a firsthand look at the findings from the recently released benchmark study: “Are You Ready for HIPAA/HITECH? A Benchmark of Healthcare Companies.”

In this session, Dr. Larry Ponemon and Raj Chaudhary will provide answers to these additional common questions:

• How frequently are healthcare organizations testing and updating their HIPAA/HITECH compliance programs?
• How prevalent are deficiencies in HIPAA/HITECH compliance programs?
• Which HIPAA/HITECH compliance requirements are most fully implemented?
• Which HIPAA/HITECH compliance requirements are impacting business operations?
• Which HIPAA/HITECH compliance requirements are necessitating 3rd-party assistance?
• What is the average cost of HIPAA/HITECH compliance based on organization size?

Key findings and analysis from the HIPAA/HITECH & Consumer Sentiment Benchmark will also be discussed, including:

• 94% of the respondents are not ready to comply with the privacy and security provisions of the HITECH Act
• 90% of respondents had a breach involving at least one protected health record
• 55% of respondents report there is no management support for HITECH compliance
• 60% say their organizations have only partially implemented a risk-based program for protecting the privacy of PHI
• More than 73% of consumers that responded do not trust the Federal Government including HHS, to protect the privacy of their health records
• Consumers that responded view health records as the most privacy sensitive of all private information (above bank account, income taxes, and credit card information)

The session will include next-step suggestions for HIPAA/HITECH compliance and preparing for inspections by the Office for Civil Rights. A live question and answer session with the presenters will be included and webinar attendees will receive access to complimentary copies of the benchmark study and the Crowe Horwath whitepaper “Raising Healthcare Security and Privacy Standards: Complying With HIPAA and the HITECH Act”.

Who Should Attend:

• Healthcare Providers, Payors and Business Associates
• Privacy Officer or Director
• Chief Compliance Officer or Director
• HIM Officer or Director
• Security Officer or Director
• CFO, CEO
• Chief Risk Officer or Director
• Legal/Regulatory Counsel

About the presenters:

Dr. Larry Ponemon is the Chairman and Founder of the Ponemon Institute, a research “think tank” dedicated to advancing privacy and data protection practices. Dr. Ponemon is considered a pioneer in privacy auditing and the Responsible Information Management or RIM framework. Dr. Ponemon consults with leading multinational organizations on global privacy management programs. He has extensive knowledge of regulatory frameworks for managing privacy and data security including financial services, health care, pharmaceutical, telecom and Internet. Dr. Ponemon was appointed to the Advisory Committee for Online Access & Security for the United States Federal Trade Commission. He was also appointed by the White House to the Data Privacy and Integrity Advisory Committee for the Department of Homeland Security.

Raj Chaudhary is a Principal and National Practice Leader for the Security and Privacy Practice of Crowe Horwath LLP. Raj is an industry thought leader in the area of privacy and data protection. He consults with major entities in the private and public sector in assisting them with remediation of deficiencies in safeguarding information. He has extensive knowledge of regulatory frameworks for managing security and privacy in multiple industries including financial services, health care and public sector.

As a result of current economic conditions and market demands for increased transparency, enterprise risk management is rapidly becoming the focal point for initiatives to improve corporate governance. Yet according to a recent survey of enterprise risk management practices, 75% of organizations still do not report key risk exposures to their boards of directors. These organizations are increasingly at risk of regulatory sanctions and preventable yet unforeseen emerging risks to their brands and core strategic initiatives.

Join us for this session with Mark Beasley, in which he’ll share insights from recent research conducted with over 300 CFO’s about the current state of enterprise risk oversight. The research uncovered broad dissatisfaction among executives with their organization’s risk management practices and results. In addition to the survey results, this session will address:

• What are the limitations with today’s common risk management approaches?
• What are progressive organizations doing in response to increased expectations for more robust risk oversight at the board and senior executive levels?
• Why is better risk intelligence, especially related to emerging risks, critical to long-term strategies?
• What steps can senior executives take to strengthen their focus on oversight of the organization’s top emerging risk exposures?

Who Should Attend:

• Board of Directors and Audit Committee Members
• CEO, CFO
• Chief Risk Officer
• Chief Compliance Officer
• Chief Security Officer
• General Counsel
• General Audit Executive
• Chief Strategy Executive

Reference Materials:

Webinar attendees should download and review these COSO documents prior to the live session:

• Click HERE to download ERM Document 1
• Click HERE to download ERM Document 2

Attendees of the live session will also receive a copy of the survey report on the current state of risk management practices.

About the Presenter:

Mark Beasley is the Deloitte Professor of Enterprise Risk Management at the College of Management at North Carolina State University in Raleigh, North Carolina. The Enterprise Risk Management (ERM) Initiative at NC State provides thought leadership about ERM practices and their integration with strategy and corporate governance. As founding director, Dr. Beasley leads the ERM Initiative’s efforts to help pioneer the development of this emergent discipline through outreach to business professionals, with its ongoing ERM Roundtable Series and ERM Executive Education for boards and senior executives; research, advancing knowledge and understanding of ERM issues; and undergraduate and graduate business education for the next generation of business executives (www.erm.ncsu.edu). He frequently works with boards of directors and senior management teams to assist them in strengthening their risk oversight processes.