Kno2
Step-by-step implementation guide β pre-implementation checklist, onboarding, staff training, go-live runbook, and ROI tracking.
Kno2 β Implementation Playbook (DSO)
Kno2 Implementation Playbook for DSOs
Data & Infrastructure | Healthcare Interoperability Platform
1. Executive Summary
What Kno2 Does
Kno2 is a healthcare interoperability platform that enables secure electronic exchange of clinical documentsβincluding referral letters, medical histories, imaging records, and care coordination documentsβbetween dental practices, medical providers, specialists, and health information networks. The platform eliminates fax-based workflows, automates document routing, and connects dental organizations to national health information exchanges (HIEs) through Direct Secure Messaging and FHIR-based APIs.
Why DSOs Benefit from Healthcare Interoperability AI at Scale
Network Effects Multiply Value: With 15β50 locations, each connection you establish to medical providers, specialists, or HIEs immediately benefits your entire network. A single integration effort yields organization-wide access to patient health records.
Standardization Drives Efficiency: DSOs can deploy uniform document exchange protocols across all locations, eliminating the variability of fax numbers, manual workflows, and inconsistent referral tracking. One configuration template governs the entire portfolio.
Data Aggregation Enables Intelligence: Centralized visibility into referral patterns, medical-dental coordination workflows, and document exchange metrics allows DSOs to identify bottlenecks, optimize referral networks, and demonstrate value in medical-dental integrationβincreasingly important for value-based care arrangements and payer negotiations.
Compliance at Scale: A single BAA, unified audit trail, and standardized HIPAA-compliant workflows reduce compliance risk exponentially compared to managing disparate fax machines and local processes at each location.
Expected Timeline: Decision to Full Deployment
| Phase | Timeline | Scope |
|---|---|---|
| Pre-Implementation | Weeks 1β2 | Enterprise setup, stakeholder alignment, baseline metrics |
| Wave 1 Pilot | Weeks 3β5 | 2β3 pilot locations fully operational |
| Wave 2 Expansion | Weeks 6β9 | Next 5β8 locations |
| Wave 3 Full Deployment | Weeks 10β16 | Remaining locations |
| Optimization | Weeks 17β24 | Performance tuning, ROI validation |
Total timeline for 30-location DSO: 16β20 weeks to full deployment; 24 weeks to validated ROI
2. Pre-Implementation Checklist (Weeks 1β2)
Technical Requirements
Network Standards Across Locations
β Minimum internet bandwidth: 25 Mbps download / 10 Mbps upload per location (verify with speed tests at each site during peak hours) β Network latency to cloud services: <100ms (test connectivity to Kno2's cloud endpoints) β Firewall configuration: Whitelist Kno2 IP ranges and domains (obtain from vendor during onboarding) β TLS 1.2 or higher enabled on all network egress points β DNS resolution functioning correctly for external domains
Hardware Requirements
β Workstations: Modern browser support (Chrome, Edge, Firefoxβlatest two versions) β Scanners: TWAIN-compatible scanners at locations still receiving paper documents (for digitization) β Mobile devices: If using Kno2 mobile functionality, iOS 14+ or Android 10+
Software Prerequisites
β Practice Management System (PMS) versions confirmed compatible (see Section 5 for version details) β Imaging software with export/import capabilities (if integrating imaging workflows) β PDF reader installed on all workstations
Centralized vs. Location-Level Hosting Decision π£
| Approach | Recommended For | Considerations |
|---|---|---|
| Centralized Cloud (Recommended) | All DSOs | Single tenant, unified admin console, simplified compliance |
| Location-Level | Regulatory edge cases | Rarely necessary; increases admin overhead |
Decision: Kno2 operates as a cloud-native SaaS platform. DSOs should deploy a single enterprise tenant with location-level organizational units within that tenant.
Single Sign-On (SSO) Requirements
β Identity Provider (IdP) confirmed: Azure AD, Okta, Google Workspace, or other SAML 2.0 compatible β SSO technical contact identified β User provisioning approach decided: manual, SCIM auto-provisioning, or JIT provisioning β Role-based access control (RBAC) structure drafted (admin, sender, viewer roles per location)
Centralized Credentialing
β Direct Secure Messaging addresses: Determine addressing structure (individual provider, location-level, or role-based addresses) β NPI numbers: Verify NPI records for all providers who will send/receive documents β Organizational NPI: Ensure DSO-level Type 2 NPI is active and accurate
Vendor Onboarding Steps
Key Contacts to Establish π΅
| Role | Purpose | When to Engage |
|---|---|---|
| Implementation Manager | Primary point of contact, project coordination | Week 1, Day 1 |
| Technical Integration Specialist | API setup, PMS integration, HIE connectivity | Weeks 2β3 |
| Training Coordinator | Training materials, certification, champion enablement | Weeks 3β4 |
| Support Escalation Contact | Named escalation beyond Tier 1 support | Establish before Wave 1 go-live |
| Customer Success Manager | Ongoing relationship, QBRs, expansion | Post-full deployment |
Onboarding Milestones with Vendor π΅
β Kickoff call scheduled (Week 1, Day 1β2) β Attendees: VP Ops, IT Director, Implementation Manager β Technical discovery session (Week 1, Day 3β4) β Review PMS landscape, network architecture, integration approach β Enterprise tenant provisioned (Week 1, Day 5) β Admin access granted to IT team β Direct Secure Messaging domains registered (Week 2) β e.g., @[dsoname].kno2.com β BAA executed (Week 1) β Legal review and signature before any PHI touches the platform β οΈ
Data/Access Prerequisites
API Keys and Integration Credentials
β PMS API credentials obtained for each system in use (Dentrix Enterprise, Eaglesoft, Open Dental, etc.) β Imaging system API documentation reviewed (Dexis, Carestream, Patterson) β Kno2 API keys generated for each integration endpoint β Secure credential storage established (do not store in plain text or shared documents)
Directory Access
β Active Directory / IdP user groups created for Kno2 access tiers β User list exported from PMS for provisioning (name, role, location, email, NPI if provider) β Termination/onboarding workflow updated to include Kno2 access management
Historical Data Assessment
β Determine if historical documents need migration (rarely necessary for interoperability platforms) β If yes: Catalog document types, volumes, and source systems β If no: Document decision and proceed with go-forward data only
Internal Stakeholder Alignment
Stakeholder Alignment Map π£
| Stakeholder Level | Who | Role in Implementation | Communication Cadence |
|---|---|---|---|
| Board/Investors | Board members, PE sponsors | Approval of investment; ROI accountability | Pre-approval briefing; quarterly updates |
| C-Suite | CEO, COO, CDO, CFO, CIO/CTO | Executive sponsorship; resource allocation; strategic alignment | Weekly during implementation; monthly post-deployment |
| Regional Managers | Regional Directors/VPs | Cascade rollout plan; monitor location progress; escalate blockers | Weekly during waves affecting their region |
| Location Office Managers | Practice Managers | Local execution; staff scheduling for training; champion coordination | Daily during their wave; weekly post-launch |
| Providers | Dentists, Specialists | Clinical workflow adoption; document review/approval | Training sessions; as-needed support |
| Clinical Staff | Hygienists, Assistants | Workflow touchpoints (if applicable) | Training sessions |
| Administrative Staff | Front desk, Referral coordinators | Primary daily users; document sending/receiving | Intensive training; daily support first week |
| Billing/Insurance Staff | Billing specialists | Attachment workflows for claims | Targeted training |
| IT/Support | Central IT, Help desk | Technical support; integration maintenance | Continuous involvement |
Approval Gates π£
β Budget approval: CFO sign-off on implementation costs and licensing β Security review: CIO/CISO approval of BAA, security architecture, and data governance β Clinical endorsement: CDO/Chief Dental Officer validation of clinical workflow changes β Operational approval: COO authorization of rollout timeline and resource allocation β Legal review: General Counsel approval of BAA and data handling terms
Baseline Metrics to Capture BEFORE Go-Live β οΈ
Capturing baseline metrics is essential for demonstrating ROI. Without pre-implementation data, you cannot prove value post-deployment.
Standardized Measurement Protocol Across All Locations
| Metric Category | Specific Metric | Measurement Method | Target Locations |
|---|---|---|---|
| Referral Efficiency | Average days from referral sent to specialist appointment confirmed | Manual audit of 30 referrals per location | All Wave 1; sample from remaining |
| Document Turnaround | Time to receive requested medical records | Track 20 requests per location | All Wave 1; sample from remaining |
| Fax Volume | Outbound faxes per month | Fax machine/service logs | All locations |
| Fax Failures | % of faxes requiring resend | Manual tracking or fax service reports | All locations |
| Staff Time on Document Handling | Hours/week spent on fax-based document tasks | Time study (2-week sample) | All Wave 1 |
| Referral Loop Closure | % of referrals with documented outcome | Chart audit (50 referrals per location) | All Wave 1 |
| Patient Complaints | Complaints related to records/referrals | Patient feedback systems | All locations |
| Claim Attachment Efficiency | Time to attach clinical documents to claims | Billing team time study | All locations |
Metric Collection Checklist
β Designate metric collection owner at central level (typically IT or Ops analyst) β Create standardized data collection template (spreadsheet with formulas) β Communicate metric collection requirements to all locations 2 weeks before their wave β Collect baseline data for minimum 2 weeks before go-live β Store baseline data centrally in protected location for comparison β Document any location-specific anomalies that may affect baseline validity
3. Location Readiness Assessment
Scoring Framework
Score each factor 1β5 for every location. Use the composite score to prioritize rollout sequence.
Factor 1: IT Infrastructure Maturity
| Score | Network Speed | Hardware Age | PMS Version |
|---|---|---|---|
| 5 | 100+ Mbps, enterprise-grade | <2 years | Latest supported |
| 4 | 50β100 Mbps, stable | 2β3 years | One version behind |
| 3 | 25β50 Mbps, occasional issues | 3β4 years | Two versions behind |
| 2 | 10β25 Mbps, frequent issues | 4β5 years | Requires upgrade for compatibility |
| 1 | <10 Mbps or unreliable | >5 years or failing | Unsupported version |
Assessment Questions:
- When was the last network infrastructure upgrade?
- Are there known connectivity issues (dropped connections, slow performance)?
- Has the PMS been updated within the last 12 months?
Factor 2: Staff Tenure and Adaptability
| Score | Average Tenure | Turnover Rate | Tech Comfort | Recent Training |
|---|---|---|---|---|
| 5 | >3 years | <15% annually | High (adopts tools quickly) | Completed 2+ tech trainings in past year |
| 4 | 2β3 years | 15β25% | Moderate-high | 1β2 tech trainings |
| 3 | 1β2 years | 25β35% | Moderate | Some training |
| 2 | 6β12 months | 35β50% | Low-moderate | Minimal training |
| 1 | <6 months | >50% | Low (resistant) | No recent training |
Assessment Questions:
- What is the 12-month turnover rate at this location?
- How did staff respond to the last technology change?
- Is there a culture of continuous improvement or resistance to change?
Factor 3: Patient Volume
| Score | Monthly Patient Visits | Referral Volume | Impact Potential | Risk Level |
|---|---|---|---|---|
| 5 | 800+ | High (100+ referrals/month) | Maximum ROI | Higher complexity |
| 4 | 600β800 | Above average | High ROI | Moderate complexity |
| 3 | 400β600 | Average | Moderate ROI | Balanced |
| 2 | 200β400 | Below average | Lower ROI | Lower risk |
| 1 | <200 | Minimal | Lowest ROI | Simplest |
Note: High-volume locations offer greatest ROI but also present higher go-live risk. For Wave 1, target scores of 3β4 (sufficient volume to demonstrate value without excessive complexity).
Factor 4: Tech Stack Compatibility
| Score | PMS Integration | Imaging Integration | Other Systems | API Readiness |
|---|---|---|---|---|
| 5 | Direct Kno2 integration available | Direct integration available | All systems API-enabled | All APIs documented and tested |
| 4 | Integration requires configuration | Integration via export/import | Most systems compatible | Most APIs accessible |
| 3 | Integration requires workaround | Manual document handling | Some compatibility gaps | Some API work needed |
| 2 | Significant custom work needed | No integration pathway | Multiple legacy systems | Limited API access |
| 1 | No integration possible | Paper-only workflow | Incompatible ecosystem | No API capability |
Assessment Questions:
- What PMS is in use and what version?
- Has this location successfully completed a software integration in the past 2 years?
- Are there any "shadow IT" systems that complicate the tech stack?
Factor 5: Local Champion Availability
| Score | Champion Profile | Availability | Leadership Support | Track Record |
|---|---|---|---|---|
| 5 | Experienced, respected, tech-savvy | Dedicated time allocated | Full OM and provider endorsement | Led successful tech implementations |
| 4 | Competent, willing, moderate tech skills | Part-time availability | OM endorsement | Participated in implementations |
| 3 | Identified candidate, needs development | Limited availability | Neutral support | Some experience |
| 2 | No clear candidate identified | Availability uncertain | Passive support | No experience |
| 1 | No champion, hostile environment | No one available | Active resistance | Negative history |
Assessment Questions:
- Is there someone at this location who is excited about this initiative?
- Does that person have credibility with their peers?
- Will the Office Manager publicly support and enable the champion?
Composite Score Calculation
| Factor | Weight | Rationale |
|---|---|---|
| IT Infrastructure | 25% | Technical foundation must exist |
| Staff Adaptability | 20% | People drive adoption |
| Patient Volume | 15% | ROI depends on utilization |
| Tech Stack Compatibility | 25% | Integration friction determines timeline |
| Champion Availability | 15% | Local ownership accelerates success |
Formula:
Composite Score = (IT Γ 0.25) + (Staff Γ 0.20) + (Volume Γ 0.15) + (Tech Γ 0.25) + (Champion Γ 0.15)
Score Interpretation:
- 4.5β5.0: Ideal Wave 1 candidate
- 3.5β4.4: Wave 2 candidate
- 2.5β3.4: Wave 3 candidate (may need remediation first)
- <2.5: Requires intervention before rollout β address infrastructure or staffing issues first π£
Recommended Rollout Sequence
Sample Scoring Output (30-Location DSO)
| Location | IT | Staff | Volume | Tech | Champion | Composite | Recommended Wave |
|---|---|---|---|---|---|---|---|
| Location A | 5 | 4 | 3 | 5 | 5 | 4.50 | Wave 1 |
| Location B | 4 | 5 | 4 | 4 | 4 | 4.20 | Wave 1 |
| Location C | 4 | 4 | 4 | 4 | 4 | 4.00 | Wave 1/2 |
| Location D | 3 | 4 | 5 | 4 | 3 | 3.75 | Wave 2 |
| Location E | 3 | 3 | 3 | 3 | 2 | 2.85 | Wave 3 |
| Location F | 2 | 2 | 2 | 2 | 1 | 1.85 | Remediation |
Wave Assignment Guidelines
- Wave 1 (Pilots): Select 2β3 locations with scores β₯4.0 AND geographic/specialty diversity
- Wave 2: Select 5β8 locations with scores 3.5β4.5, using lessons from Wave 1
- Wave 3: Remaining locations, incorporating all learnings
- Remediation Queue: Locations <2.5 β address root cause before scheduling
4. Rollout Strategy
Wave Structure Recommendation
Wave 1: Pilot Phase (Weeks 3β5)
Number of Locations: 2β3
Selection Criteria for Wave 1: β Composite readiness score β₯ 4.0 β Geographic diversity (different regions represented) β Practice type diversity (include at least one specialty if DSO has mixed portfolio) β Strong local champion identified and committed β No major competing initiatives (e.g., PMS migration, office move) β Office Manager supportive and engaged β Reasonable patient volume (enough to test workflows, not so high that issues cause major disruption)
Wave 1 Objectives:
- Validate integration configurations in real-world environment
- Test training materials and champion model
- Identify workflow friction points before scaling
- Establish realistic timeline estimates for subsequent waves
- Create success stories and testimonials for internal marketing
Timeline:
| Week | Activities |
|---|---|
| Week 3 | Champion training; configuration deployment; test environment validation |
| Week 4 | Staff training; parallel operation; supervised go-live |
| Week 5 | Independent operation; issue resolution; success documentation |
Wave 2: Expansion Phase (Weeks 6β9)
Number of Locations: 5β8
Selection Criteria: β Composite readiness score β₯ 3.5 β Includes at least one location from each region β Incorporates lessons learned from Wave 1 β Champions identified and scheduled for certification
Timeline:
| Week | Activities |
|---|---|
| Week 6 | Champion certification (virtual train-the-trainer); configuration deployment |
| Week 7 | Staff training at all Wave 2 locations |
| Week 8 | Staggered go-live (2β3 locations per day across the week) |
| Week 9 | Stabilization; issue resolution; preparation for Wave 3 |
Wave 3: Full Deployment (Weeks 10β16)
Number of Locations: Remaining locations (adjust based on total count)
Approach:
- Deploy in sub-waves of 5β10 locations per week
- Leverage established playbook, refined training materials, and experienced champions
- Focus on efficiency and consistency
Timeline:
| Week | Activities |
|---|---|
| Week 10β11 | Wave 3a (first cohort) |
| Week 12β13 | Wave 3b (second cohort) |
| Week 14β15 | Wave 3c (remaining standard locations) |
| Week 16 | Remediated locations; stragglers; final cleanup |
Go/No-Go Criteria Between Waves π£
Go Criteria (All Must Be Met)
| Criterion | Measurement | Threshold |
|---|---|---|
| Technical stability | System uptime during wave | β₯99% |
| Integration success | Document exchanges completing without error | β₯95% |
| Training completion | Staff trained and certified | 100% of active users |
| Champion readiness | Next wave champions certified | 100% |
| Critical issues resolved | P1/P2 issues from current wave | 0 open |
| User satisfaction | Champion confidence survey | β₯4/5 average |
| Workflow adoption | Target workflows executed correctly | β₯90% |
No-Go Triggers (Any One Triggers Pause)
| Trigger | Description | Required Action |
|---|---|---|
| Integration failure | >5% of document exchanges failing | π΅ Vendor escalation; do not proceed |
| Unresolved P1 issues | Critical bugs affecting patient care or compliance | Fix before advancing |
| Champion attrition | >1 Wave 1 champion expressing serious concerns | Investigate root cause; address concerns |
| Stakeholder objection | Regional Manager or CDO raises formal concern | π£ Executive review before proceeding |
| Metric regression | Any baseline metric worsening post-implementation | Root cause analysis required |
Rollback Plan β οΈ
If a wave fails or requires pause:
Immediate Actions (Within 4 Hours)
- Halt further go-lives β No additional locations proceed
- Assess scope β Is the issue isolated to specific locations or systemic?
- Activate fallback workflows β Ensure affected locations can revert to fax-based processes
- Vendor escalation β Engage Kno2 technical support at Tier 2+ immediately π΅
Communication Protocol
- Location-level: Office Manager notifies staff to revert to fallback workflow
- Regional-level: Regional Manager briefed within 2 hours
- Central-level: VP Ops and CIO briefed within 4 hours
- Executive-level: C-suite briefed within 24 hours if issue persists π£
Rollback Execution
β Document rollback trigger and decision rationale β Disable Kno2 as default workflow at affected locations β Re-enable previous fax workflows β Preserve all data in Kno2 system (do not delete) β Schedule post-mortem within 72 hours β Revise timeline and communicate new go-live dates
Isolation Protocol
- If issue is location-specific: Rollback that location only; continue other locations
- If issue is integration-specific (e.g., one PMS): Pause all locations with that PMS
- If issue is platform-wide: Pause entire rollout; escalate to vendor executive sponsor π΅
5. Configuration & Integration (Weeks 2β3)
Practice Management System Integrations
Dentrix Enterprise π΅
Prerequisites: β Dentrix Enterprise version 11.0 or higher β eDex enabled and configured β API license active (verify with Patterson) β Kno2 integration module credentials obtained
Integration Steps:
- β Install Kno2 Dentrix connector (vendor-provided installer) π΅
- β Configure API endpoint in Dentrix Enterprise admin console
- β Map document types (referral letters, clinical notes, imaging reports) to Dentrix categories
- β Configure patient matching rules (MRN, name + DOB, fuzzy matching threshold)
- β Enable bi-directional sync (documents sent from Dentrix; received documents filed to patient record)
- β Set up user permissions in Dentrix for Kno2 functions
- β Test with 5 sample patients before production use
Common Issues β οΈ:
- Firewall blocking API calls β verify whitelist configuration
- Duplicate patient records causing misfiling β tighten matching rules
- Slow performance β check network latency; consider caching
Eaglesoft π΅
Prerequisites: β Eaglesoft version 21 or higher β Eaglesoft Advanced module (required for integration) β Windows Server 2016 or higher for Eaglesoft server
Integration Steps:
- β Request Kno2 Eaglesoft integration package from vendor π΅
- β Install integration service on Eaglesoft server
- β Configure connection string to Eaglesoft database (read-only access recommended)
- β Map document categories between systems
- β Configure patient matching (Eaglesoft Patient ID preferred)
- β Enable automatic document attachment to patient ledger
- β Validate with test transactions
Common Issues β οΈ:
- Database lock conflicts during high-volume periods β schedule heavy imports for off-hours
- Version incompatibility β confirm Eaglesoft version before starting
Open Dental π΅
Prerequisites: β Open Dental version 21.1 or higher β Open Dental API enabled (Middle Tier or direct) β API key generated from Open Dental admin
Integration Steps:
- β Generate API credentials in Open Dental (Setup > API)
- β Register API key with Kno2 platform π΅
- β Configure REST API endpoint (typically https://[server]:port/api/)
- β Enable document module integration
- β Map provider IDs between systems
- β Configure patient lookup method (PatNum, SSN-last-4, name + DOB)
- β Test inbound and outbound document workflows
Common Issues β οΈ:
- Self-signed SSL certificates causing connection failures β install proper certificates
- Rate limiting on API calls β configure throttling in Kno2
Imaging System Integration
General Imaging Integration Approach
Kno2 can handle imaging documents in multiple ways:
| Method | Best For | Configuration |
|---|---|---|
| Direct integration | Supported systems (Dexis, Carestream) | API-based real-time exchange |
| DICOM bridge | Enterprise imaging | Requires DICOM router configuration |
| PDF export/import | Legacy systems | Manual or semi-automated workflow |
| File share monitoring | Batch processing | Kno2 monitors folder for new files |
Dexis Integration
- β Enable Dexis Imaging Hub API
- β Configure Kno2 imaging connector π΅
- β Map patient identifiers between Dexis and Kno2
- β Set up automatic export triggers for referral images
Carestream Integration
- β Enable Carestream Dental API
- β Configure secure connection to Kno2
- β Test image quality preservation (compression settings)
- β Validate HIPAA-compliant transmission
Test Environment Setup
Centralized Test Environment (Recommended for DSOs)
β Request dedicated Kno2 sandbox tenant π΅ β Configure sandbox with identical settings to production (use configuration template) β Provision test user accounts mirroring production roles β Connect sandbox to PMS test environments (if available) or create mock endpoints β Generate synthetic test patients (do NOT use real PHI in test environment)
Validation Checklist
| Test Case | Expected Result | Pass/Fail |
|---|---|---|
| Send document to external provider | Document delivered; delivery confirmation received | β |
| Receive document from external source | Document arrives; patient matched; filed correctly | β |
| Failed delivery handling | Error notification; retry mechanism activates | β |
| Patient matching (exact match) | Correct patient identified | β |
| Patient matching (fuzzy match) | Candidate list presented; user can select | β |
| Patient matching (no match) | Queue for manual review | β |
| Large file handling (>10MB) | Successful transmission | β |
| Concurrent users | No performance degradation | β |
| SSO authentication | User logs in via IdP; correct permissions | β |
| Audit log generation | All transactions logged with timestamp, user, action | β |
Standardized Configuration Template π£
The following settings should be identical across all locations:
Standardize Centrally
| Setting Category | Specific Setting | Recommended Value |
|---|---|---|
| Security | Password policy | Match corporate standard |
| Security | Session timeout | 15 minutes |
| Security | Failed login lockout | 5 attempts |
| Addressing | Domain format | @[location-code].[dso].kno2.com |
| Document Types | Category taxonomy | Standardized list (Referral, Medical History, Lab Results, Imaging, Insurance, Other) |
| Patient Matching | Matching algorithm | Name + DOB + (if available) MRN |
| Patient Matching | Fuzzy match threshold | 85% confidence |
| Notifications | Delivery failure alerts | Always notify sender |
| Audit | Retention period | 7 years minimum |
| Integrations | PMS sync frequency | Real-time (if supported); else every 5 minutes |
Allow Location-Specific Configuration
| Setting Category | Specific Setting | Variation Allowed |
|---|---|---|
| Workflow | Default recipients | Location can define common referral destinations |
| Templates | Cover letter templates | Location can customize branding and messaging |
| Providers | Provider-specific preferences | Individual providers can set preferences |
| Notifications | Individual alert settings | Users can customize notification frequency |
| Operating hours | Document hold hours | Locations can set schedules (e.g., no outbound after 8 PM) |
Security and HIPAA Compliance Checklist
Enterprise-Level HIPAA Checklist
β Business Associate Agreement (BAA) executed with Kno2 π΅ β οΈ β Data Processing Agreement reviewed if operating in states with additional requirements (e.g., CCPA) β SOC 2 Type II report obtained from Kno2 and reviewed by security team π΅ β HITRUST certification status confirmed (if required by payer contracts) β Penetration test results reviewed (request summary from Kno2) π΅
Access Controls
β RBAC implemented with least-privilege principle β Admin access limited to central IT team only β Audit logging enabled and retention period configured β Access review schedule established (quarterly recommended)
Data Governance
β Data classification applied (PHI, PII, Business Confidential) β Encryption verified: in-transit (TLS 1.2+) and at-rest (AES-256) β Data residency confirmed (US-only for HIPAA; verify if multi-national) β Backup and disaster recovery SLAs reviewed π΅
Workforce Training
β HIPAA training updated to include Kno2 usage β Acceptable use policy updated β Incident response plan updated to include Kno2-related breach scenarios
6. Team Training Plan
Train-the-
AI-generated implementation guide based on public vendor information. Verify specifics directly with Kno2.