Colington Consulting

About Us

Why Work with the HIPAA Compliance Experts at Colington?

The number one reason to work with us is that we help all types of organizations achieve HIPAA compliance. Colington Consulting provides comprehensive HIPAA compliance services by our team of experts. Unlike other service providers that use web-based formats and expect you to answer a series of questions you can hardly understand, we always conduct the assessment, value your input, and use a common sense approach to compliance.

In 2020, Colington was named one of the top 10 HIPAA Consulting Companies by Atlantic.net acknowledging our "vast understanding of compliance regulations." We are also recognized by Sprinto as a top 10 company in 2024 & 2025. Jake Jorgovan, a AI Strategist & B2B Growth Expert, also recognized us as a top 10 HIPAA consulting company.

We take the uncertainty out of what is reasonable and appropriate for HIPAA compliance for your organization.

Our compliance experts are able to answer your questions at every step during the process. Our goal is to always educate first and empower your workforce. We provide real-time advice for best practices for securely handling protected health information, protecting patient privacy, and understanding how to avoid potential breaches.

Your HIPAA Risk Management Plan, which includes all required policies and procedures, is specifically written for your organization.

Every project is customized and fulfilled with the integrity and resourcefulness developed with over 60 years of combined experience in law enforcement, regulatory compliance, inspections, facility security, risk mitigation, healthcare policy writing, healthcare solutions architecture, data flow analysis, and health information privacy requirements.

Ask our clients!! Upon request, we can provide client references who can speak about our services, professionalism, knowledge of compliance regulations, and the experience of working with our company.

Why Should Our HIPAA Services Matter to You?

Why Work with the HIPAA Compliance Experts at Colington?

There has been almost $145 million in fines and penalties to settle non-compliance issues. HIPAA data breaches are occurring at an alarming rate. Every day new healthcare breaches are posted on the HHS website.

While hackers tend to cause the most serious data breaches, employee error and insider threats are also major contributors.

Should a breach of protected health information occur, your practice or business is subject to a HIPAA compliance investigation. Colington Consulting provides assistance to sufficiently answer any questions the HHS Office for Civil Rights (OCR) will ask about your compliance program.

The better you can demonstrate your efforts to exercise reasonable diligence to mitigate risk, the lesser amounts of civil monetary penalties may be imposed.

Not knowing what requirements need to be in place is not an excuse OCR will accept. With our assistance, we make sure all of our clients can sufficiently demonstrate how HIPAA compliance requirements are being met if the subject of an OCR investigation or compliance review.

Colington Consulting utilizes a team of industry experts with extensive experience in regulatory requirements, administration of HIPAA compliance programs, security risk analysis, healthcare policy, and health information technology.

OCR does not recognize any type of "certificate" of compliance. What we do is issue a letter of attestation once we help your organization meet all HIPAA Security Rule requirements.

We specialize in assisting organizations that do not have the current resources to perform these critical and required functions or need to set up a new HIPAA compliance program.

The Team

Jay Hodes - President & Founder

Deborah Ross - Vice President – Policy & Client Management

Jay Hodes is a leading expert in HIPAA compliance and President of Colington Consulting. Mr. Hodes has over 40 years of combined experience in risk assessments, site security evaluation, regulatory compliance, policy and procedures assessments, and Federal law enforcement management. He served as the HIPAA Compliance Officer for the County of Fairfax, Virginia. In that role, Mr. Hodes managed the county-wide HIPAA security and privacy programs which included conducting security risk assessments, policy, and procedure development, conducting HIPAA breach, compliance, and privacy complaint investigations, and developing HIPAA Security Awareness and Privacy training. Mr. Hodes was an Assistant Inspector General for Investigations at the U.S. Department of Health and Human Services. He has provided expert witness opinions for litigation cases.

Mr. Hodes has been the keynote speaker and provided presentations regarding HIPAA compliance and patient privacy to many professional healthcare organizations including the Health Care Compliance Association, the Maryland Medical Group Management Association, the Baltimore City (MD) Medical Society, the New Jersey Aging Life Care Association, the California Primary Care Association, the National Association for Speech and Hearing Centers, and the Virginia Academy of Elder Law Attorneys. He has published over 80 educational articles regarding HIPAA compliance, been featured in Part B News articles, the Report on Patient Privacy, provided a guest post in the Electronic Health Reporter, interviewed and provided comments to the Journal of the American Health Information Management Association (AHIMA) regarding the use of tracking technologies and patient privacy concerns; interviewed and provided comments to Hospital Access Management regarding HIPAA privacy issues; interviewed four times by Renal & Urology News; interviewed by PracticeSuite EMR as part of their Expert Interview Series, and interviewed and provided comments to the Health System Specialist.

Mr. Hodes is a member of the American Institute of Healthcare Compliance, Health Care Compliance Association, and the Healthcare Information and Management Systems Society. In his free time, Mr. Hodes is a volunteer for Lab Rescue of the Labrador Retriever Club of the Potomac.

Show Less

Deborah Ross - Vice President – Policy & Client Management

Deborah has over 30 years of experience in technical writing, editing, software training, and business document production.

Her specialized background includes:

Developing customized policies and procedures for HIPAA Risk Management Plans.
Design, editing, and production of National Baldrige Award applications in the healthcare sector, inclu

Deborah has over 30 years of experience in technical writing, editing, software training, and business document production.

Her specialized background includes:

Developing customized policies and procedures for HIPAA Risk Management Plans.
Design, editing, and production of National Baldrige Award applications in the healthcare sector, including the 2011 National Baldrige Award winner.
Technical writer and editor for an online medical information web portal for Washington, DC and Maryland-based clinicians.
Writing and designing training materials for a computer-based clinical information system for MedStar Health.
Writing and designing electronic health record (EHR) tutorials for medical staff and clinicians.

Show Less

About Us

Why Work with the HIPAA Compliance Experts at Colington?

Why Work with the HIPAA Compliance Experts at Colington?

Why Work with the HIPAA Compliance Experts at Colington?

Why Should Our HIPAA Services Matter to You?

Why Work with the HIPAA Compliance Experts at Colington?

Why Work with the HIPAA Compliance Experts at Colington?

The Team

Jay Hodes - President & Founder

Deborah Ross - Vice President – Policy & Client Management

Deborah Ross - Vice President – Policy & Client Management

Deborah Ross - Vice President – Policy & Client Management

Deborah Ross - Vice President – Policy & Client Management

Deborah Ross - Vice President – Policy & Client Management

This website uses cookies.