healthcare AI platforms Efficiency Boosts for the Privacy Program at North Kansas City Hospital
How a 451-bed acute-care hospital replaced an internal file-share for HIPAA breaches with structured, OCR-aligned investigation workflows.
Structured workflows
Investigation process restructured to align with OCR guidelines and required breach reporting.
Safety culture
Easily accessible, anonymous reporting promotes a culture where staff feel safe raising concerns.
Privacy + BA + Analytics
Privacy Incidents, Amendments, and BA Tracking modules work together to monitor and investigate issues.
Exceptional
Direct quote from the Privacy Officer — the support model is part of why it works.
NKCH.
North Kansas City Hospital (NKCH) is a 451-licensed-bed acute-care facility employing 550 physicians across 49 medical specialties. NKCH offers award-winning cardiovascular and orthopedic programs, emergency care, neurosciences, and spinal surgery. Through its Meritas Health subsidiary, NKCH operates the area’s largest network of physician practices — more than 280 primary and specialty care doctors and advanced practice providers.
To replace an internal file-share tracking system for HIPAA breaches, privacy reporting, and investigations.
CompliancePro’s program modules for Privacy Incidents, Amendments & Restrictions, and Business Associate Tracking.
Enhanced organization, easily accessible and anonymous reporting that promotes a culture of safety, and OCR-aligned investigation discipline.
NKCH needed to replace its internal file-share tracking for HIPAA breaches, privacy reporting, and investigations. The hospital’s Privacy Officer needed structured workflows that mapped to OCR guidelines — not bespoke file paths and tribal knowledge.
Karen Reynolds, MBA, RHIA, CHPS, is the hospital’s Director of Health Information Management and Privacy Officer. Prior to her arrival, CPS’s Privacy Incidents, Amendments, and Business Associate Tracking modules had replaced NKCH’s cumbersome and outdated file-sharing system to better manage privacy investigations and BA tracking.
Since implementation, Karen has seen the value and rewards CPS modules bring to her organization. "We can better navigate the privacy investigation process in a structured format consistent with OCR guidelines and required breach reporting," she explained. "The user-friendly tool makes following the complex privacy rules easier to manage."
Thanks to the program’s organizational features, Karen and her staff can manage and organize investigation documents in one place, connect with their analytics reporting tool, and interface with the electronic medical record. "The three systems work collectively to proactively identify, monitor, and investigate" privacy-related concerns.
Karen also points to the anonymous reporting capability as a culture lever: it gives staff a channel to raise concerns without exposure, which surfaces issues earlier and reinforces the message that compliance is everyone’s responsibility.
"The customer service is exceptional. CPS has given us a boost to our efficiency, organization and culture of safety."
Privacy Incident Management · Requests for Amendments & Restrictions · Business Associate Tracking
Explore the platform behind this story.
CPS One overview
The privacy, compliance, and AI-governance platform purpose-built for healthcare. Eight modules. 96% three-year customer retention. NPS 76.
See the platform →
More outcomesAll customer outcomes
Live deployments and customer stories across HIP One, PES One, and CPS One.
Browse all stories →
Regulatory commentaryThe 21st Century Cures Act
Information blocking, EHI request workflows, and the rulebook that shapes modern healthcare privacy operations.
Read the commentary →
Live walkthrough with the team that built the platform.
A 30–45 minute working session against your real use case. Bring an open OCR audit, a stalled BAA process, or an AI vendor risk question.