How would you ensure that a new database storing patient records is fully compliant with HIPAA regulations at Health Care Service?