Skip to main content
Get the latest market insights and industry trends on Regulatory, Data, Pharmacy and Health   Register for the Upcoming Regulatory Round Table October 24, 2023   Listen to the latest podcast on GLP-1 Drugs
This content has been archived. It may no longer be relevant
[rev_slider_vc alias=”compliance-slider”]

Compliance has never been as critical as it is in today’s healthcare environment. The MRIoA Compliance Program proactively tracks applicable state and federal laws and regulations, and identifies and resolves issues to ensure compliance with all state and federal requirements.

MRIoA approaches ongoing compliance developments with innovation and flexibility, both in our processes and our products as we continue to stay ahead of legislative changes and new regulations.

New State Regulatory Requirements for Health and Pharmacy: Get Compliant Now — AVOID Penalties Later…

Enabled many health plans to meet regulatory requirements across 5 states with little to no disruption to their clinical operations


State Licensures

MRIoA is licensed to conduct utilization review in all states where required.

Corporate Policy and Procedures

Comprehensive policies and procedures incorporate all applicable state and federal legislative and regulatory requirements and guidance, accreditation standards and industry best practices, and are reviewed at least annually and updated as necessary.


Monitoring and auditing of MRIoA employees and reviewer panel members for legal and licensing complaints monthly ensures continued compliance with state, federal, accreditation and contractual requirements.

Medical Director Licensures

MRIoA’s team of Medical Directors hold licenses in all 50 states to meet same state license requirements for oversight and review.

Privacy and Security

MRIoA takes the privacy and security of your information very seriously. MRIoA’s privacy and security program incorporates the HITRUST Common Security Framework (CSF) and associated standards/regulations referenced within, including HIPAA, HITECH, and state data and privacy laws. MRIoA maintains strict access controls including privileged access, file integrity monitoring, input validation and comprehensive audit logging, and ensures confidentiality of data by using AES-256 encryption for data at rest and TLS1.2 for data in transit.


All MRIoA employees and contractors receive comprehensive training upon hire and annually thereafter. Topics include but are not limited to:

  • Code of Conduct
  • Confidentiality
  • Security
  • Conflict of Interest
  • URAC
  • Fraud, Waste and Abuse



URAC is a non-profit independent accrediting agency that is known as a leader in promoting healthcare quality. Organizations that obtain accreditation demonstrate a commitment to quality and excellence with consistent compliance with best practices. MRIoA holds two URAC accreditations in Health Utilization Management (HUM) and Independent Review Organization (IRO).


NAIRO (National Association of Independent Review Organizations) is a national trade association of URAC-accredited IROs whose primary mission is to protect the integrity of the independent review process.


NCQA is a non-profit organization dedicated to improving healthcare quality. The NCQA seal is a widely recognized symbol of quality. MRIoA is NCQA accredited in Utilization Management (UM).


These reports are intended to meet the needs of a broad range of users that need detailed information and assurance about the controls at a service organization relevant to security, availability, and processing integrity of the systems the service organization uses to process users’ data and the confidentiality and privacy of the information processed by these systems. These reports can play an important role in oversight of the organization, vendor management programs, internal corporate governance and risk management processes, and regulatory oversight.


URAC’s Independent Review Organization (IRO) accreditation standards validate that third-party organizations providing medical determinations are committed to a fair and impartial peer review process for both patients and physicians.


HITRUST (Health Information Trust Alliance) has developed the HITRUST CSF, a certifiable framework that provides organizations with the structure, detail and clarity relating to information security tailored to the healthcare industry. HITRUST certification signifies commitment to ongoing IT security.


The Self-Insurance Institute of America, Inc. (SIIA) is a member-based association dedicated to protecting and promoting the business interests of companies involved in the self-insurance and captive insurance industry. Members include, self-insurance entities, TPAs, Captive Managers, Excess/Stop-Loss Carriers and other industry service providers.

Best Places to Work

MRIoA earned the 2022 Top Workplaces USA award, issued by Energage. Top Workplaces USA offers national recognition for large organizations, those with more than 150 employees, and those that have operations in multiple markets. This award is in addition to our Top Workplaces Salt Lake City award that we have received every year since 2018.