North Louisiana’s Premier Management Firm
For Small Physician Practices, Small Hospitals
And Small Healthcare Organizations


The SMSO team of compliance specialists has extensive experience helping North Louisiana medical practices maintain compliance

complianceNortheast Louisiana’s premier management firm for Small Hospitals and Physician Practices has an established and successful history in healthcare development, management, and consulting. We have learned to listen carefully, discern the critical issues and provide the most appropriate solution for your health care organization. We take pride in building a strong relationship with you.

We specialize in using “best practices” to assist clients who wish to enhance their capacity to deliver effective and efficient patient-centric health services. In addition, we have significant experience in developing and administering various health projects from inception, through design and construction, through licensure and operations. We also have expertise in the implementation of medical regulatory changes such as meaningful use.

Best of all, the SMSO consulting staff average more than 20 years of industry experience and leadership.



SMSO works in cooperation with the Louisiana Health Care Quality Forum as an EHR Implementation Partner in north Louisiana. The SMSO consulting staff averages more than two decades of industry experience and leadership. We help our clients—small to medium healthcare facilities in north Louisiana—meet their distinct challenges and goals.


  • Take the confusion out of HIPAA requirements
  • Properly apply HIPAA requirements to your practice
  • Maintain awareness of the current status of HIPAA Rules
  • Implement a compliant HIPAA program
  • Provide effective staff HIPAA training
  • Research and answer difficult HIPAA questions
  • Address potential HIPAA issues that periodically arise

From the Joint Commission in HIPAA to HITECH and others, maintaining compliance is a critical component to operating a successful practice.

In January, 2013, the Department of Health & Human Services (HHS) adopted the HIPAA Omnibus rules, which revised existing privacy, security and breach notification. These rules were the result of requirements created under the Health Information Technology for Economic and Clinical Health (HITECH) Act.

The compliance date for most of the rules was September 23, 2013. All covered physician practices should review and revise HIPAA policies and procedures to implement these new requirements.


  • CPOE
  • ePrescribing
  • Demographics
  • Calculate and Transmit CMS Quality Measures
  • Electronic Copy of Health Information
  • Electronic Copy of Discharge Health Information
  • Clinical Summaries
  • Privacy/Security

The criteria for Meaningful Use is detailed in a list of 25 requirements issued by the Office of the National Coordinator (ONC), which is part of the Department Health & Human Services.

The criteria is broken down into two sets of objectives and measures: A Core Set and a Menu Set. In the core set, there are 15 objectives for which each provider must comply.

In the Menu set providers are free to choose 5 items from among a menu of 10 to implement. This totals 20 objectives that must be met to demonstrate meaningful use of your certified electronic health record EHR. Failure to meet even one objective may mean you will not qualify for the incentives.


  • Email Encryption
  • Electronic Health Record Access
  • Business Associate Agreements
  • Information Security Officers
  • Proactive Enforcement
  • Breach Notification

The Health Information Technology for Economic and Clinical Health Act, or HITECH Act, is part of the American Recovery and Reinvestment Act of 2009 or ARRA. ARRA contains incentives related to health care information technology in general and contains specific incentives designed to accelerate the adoption of electronic health record or EHR systems among providers.

Because this legislation anticipates a massive expansion in the exchange of electronic protected health information or ePHI, the HITECH Act also widens the scope of privacy and security protections available under HIPAA; it increases the potential legal liability for non-compliance; and it provides for more enforcement.