• English
    X

    Google Translate Disclaimer

    The Maryland Department of Information Technology (“DoIT”) offers translations of the content through Google Translate. Because Google Translate is an external website, DoIT does not control the quality or accuracy of translated content. All DoIT content is filtered through Google Translate which may result in unexpected and unpredictable degradation of portions of text, images and the general appearance on translated pages. Google Translate may maintain unique privacy and use policies. These policies are not controlled by DoIT and are not associated with DoIT’s privacy and use policies. After selecting a translation option, users will be notified that they are leaving DoIT’s website. Users should consult the original English content on DoIT’s website if there are any questions about the translated content.

    DoIT uses Google Translate to provide language translations of its content. Google Translate is a free, automated service that relies on data and technology to provide its translations. The Google Translate feature is provided for informational purposes only. Translations cannot be guaranteed as exact or without the inclusion of incorrect or inappropriate language. Google Translate is a third-party service and site users will be leaving DoIT to utilize translated content. As such, DoIT does not guarantee and does not accept responsibility for, the accuracy, reliability, or performance of this service nor the limitations provided by this service, such as the inability to translate specific files like PDFs and graphics (e.g. .jpgs, .gifs, etc.).

    DoIT provides Google Translate as an online tool for its users, but DoIT does not directly endorse the website or imply that it is the only solution available to users. All site visitors may choose to use alternate tools for their translation needs. Any individuals or parties that use DoIT content in translated form, whether by Google Translate or by any other translation services, do so at their own risk. DoIT is not liable for any loss or damages arising out of, or issues related to, the use of or reliance on translated content. DoIT assumes no liability for any site visitor’s activities in connection with use of the Google Translate functionality or content.

    The Google Translate service is a means by which DoIT offers translations of content and is meant solely for the convenience of non-English speaking users of the website. The translated content is provided directly and dynamically by Google; DoIT has no direct control over the translated content as it appears using this tool. Therefore, in all contexts, the English content, as directly provided by DoIT is to be held authoritative.

    Maryland Department of Health
    Office of Internal Controls, Audit Compliance & Information Security

    ​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​

    Office of Internal Controls, Audit Compliance & Information Security

    The MDH Office of Internal Controls, Audit Compliance & Information Security (IAC/S) serves to ensure that MDH operational units comply with legal, regulatory, and policy requirements. The IAC/S divisions include Audit Follow-Up, Audit Liaison, Compliance and Privacy, Institutional Review Board, the Strategic Data Initiative (SDI), Information Security (InfoSec), and Operations, Technology, and Risk Assessment.​

    What we do

    • Promptly make recommend​​ations to correct internal control weaknesses identified in audits or other reviews
    • ​Conduct follow-up reviews and testing to ensure that corrective actions recommended by external auditors have been implemented and are working effectively
    • Serve as liaison between Departmental units and the Office of Legislative Audits (OLA); OIG/Health; Health & Human Services OIG; and all other external audit organizations
    • Receive and review allegations regarding employee conduct and other compliance issues
    • Track and report on MDH compliance with secondary employment and financial disclosure requirements
    • Receive and review potential violations of the MDH privacy policy and the Health Information Portability & Accountability Act (HIPAA)
    • ​Coordinate the activities of the MDH Institutional Review Board
    • Review data-related agreements and update data use policies to ensure that MDH data is protected​
    • Help protect against potential information technology (IT) threats and vulnerabilities

    Audit Follow-Up helps ensure MDH compliance with external audits conducted by the Office of Legislative Audits (OLA) and all other external auditors. MDH auditors and analysts confirm whether corrective actions have been implemented and if any modifications to policies and procedures are effective based on the external audit recommendations and MDH objectives. Special audits may be performed upon request from leadership or as the result of a risk assessment or survey performed by MDH.

    Audit Liaison facilitates communication between MDH leadership and outside auditors, including the OLA; OIG/Health; Health and Human Services OIG (HHS OIG); Center for Medicare and Medicaid (CMS); and all other external audit organizations. In this role, Audit Liaison advocates on behalf of MDH while also helping to ensure MDH responds promptly to external audit recommendations.

    Compliance and Privacy helps ensure that the Department complies with the Code of Conduct, Corporate Compliance policies, privacy policies, and the Health Insurance Portability and Accountability Act (HIPAA).

    The Institutional Review Board (IRB) is responsible for reviewing research to ensure that the rights, safety, and dignity of human subjects are protected.

    The Strategic Data Initiative (SDI) is responsible for updating MDH data protection and usage policies and reviewing data-related agreements for adherence to those policies.  ​

    The Information Security Program (InfoSec) 
    The Information Security (InfoSec) program was established to protect MDH’s ability to continually provide secured mission-critical operations. Through personnel, policies, procedures and standards, it ensures the availability of organizational information, confidentiality, integrity, and compliance with HIPAA, CMS, DoIT Security Manual, and
    federal and State mandates.
    ​Contact us:​
    Maryland Department of Health
    Office of Internal Controls, Audit Compliance & Information Security​
    201 W. Pre​​ston Street
    Baltimore, MD 21201
    410-767-5314 office 
    410-333-7194 fax  
    MDH.IAC@Maryland.gov​