SECURITY Care HIPAA Compliance and HITECH Compliance
This is the hydra-headed beast tamed via utilizing The Saturn Partners, HIPAA compliance and cybersecurity experts since 2001.”
The federal Health Insurance Portability and Accountability Act (HIPAA) require healthcare organization’s to maintain the confidentiality of electronic health information that is linked to an individual patient (electronic Protected Health Information, or PHI).
Penalties and criminal enforcement of the HIPAA Security Rules were made stronger via several provisions in The Health Information Technology for Economic and Clinical Health (HITECH) Act in 2009. The HIPAA Security Rules requires healthcare organization to adopt the appropriate safeguards to protect the confidentiality, integrity and availability of patients’ protected health information.
Encrypting PHI is an acknowledged best practice for complying with the requirements of the HIPAA Security Rule and providing cloud privacy. To assist physician practices, the American Medical Association (AMA) has made available its document, “HIPAA Security Rule: Frequently asked questions regarding encryption of personal health information.” This resource explains the importance of encrypting PHI and provides guidance on determining levels of data sensitivity and recommendations on encryption methods to consider.
PHI lives on healthcare provider networks in many places, including e-mail systems, Customer Relationship Management (CRM) systems, customer databases and practice management applications. Safeguards must be put in place to secure this sort of internal information, and data that is processed and stored on external networks – including cloud based systems. It’s important to understand where this data is stored on internal networks to ensure proper security. And encryption must be applied to all PHI information that leaves healthcare organization’s internal networks and travels outside of its firewalls.
Since 2001, The Saturn Partners has assisted health care clients in protecting and safeguarding precious PHI as well as other health care IT environment sensitive assets.. visit us today at www.saturnpartners.com to find out more about our role in helping you tame the “hydra-headed beast” called HIPAA and HITECH compliance..”