According to a recent Gartner report, nearly half of large enterprises will deploy hybrid cloud environments by the end of this year. That level of growth is super exciting for the cloud, as more organizations take advantage of a digital-based strategy. However, despite the maturity of the cloud, many CIOs still express concerns. There are two major challenges organizations face in a hybrid cloud environment (or any environment, really.) One is security, which we’ve covered. The other? Compliance. We talked about …

Ransomware has exploded in popularity during the past two years, with the number of identified families growing 400 percent since 2015. It affects individuals, nonprofits and enterprises alike, but it’s is particularly fond of the healthcare industry because of the value of patient data and the criticality of hospitals. To help the healthcare IT industry (and others) learn more about ransomware, I’ve compiled a list of the most informational articles on the web to date. Health and Human Services Department …

Encryption has been widely talked about as one of the best tools to protect you against potential attacks on your data. For many companies processing credit card payments, encrypting data is required for compliance with standards such as PCI DSS and individual state laws. But if you’re in the healthcare industry, it’s even more important because it’s not required for hipaa compliance. What is encryption? It takes your data and codes it using a series of mathematical formulas to render …

There are many aspects of complying with HIPAA regulations, and all are equally important to avoid facing the stiff penalties that come as a result of any violations. In addition to technical and physical safeguards for your PHI, the administrative safeguards of the HIPAA Security Rule require a contingency plan. This is comprised of a data backup plan, disaster recovery plan, emergency mode operation plan, testing and revision procedures as well as application and data criticality analysis. We’ll discuss how …

To address the question of whether or not to use data encryption when it comes to meeting HIPAA compliance and keeping patient health information (PHI) protected, let’s revisit the Health Insurance Portability and Accountability Act of 1996 (HIPAA): A covered entity must, in accordance with §164.306… Implement a mechanism to encrypt and decrypt electronic protected health information.” (45 CFR § 164.312(a)(2)(iv)) If you choose not to encrypt data, the HIPAA Security Rule states you must implement an equivalent solution to meet …

Safeguarding Patient Data in EHRs

Posted on November 26, 2015 by

A recent blog by the HIPAA, HITECH & HIT legal blog of Fox Rothschild revealed a survey administered by the Office of Inspector General (OIG) of the U.S. Dept. of Health & Human Services (HHS). The EHR (electronic health record) technology questionnaire is part of a study on fraud and abuse safeguards in EHRs. The questionnaire may serve as insight for hospitals attempting to establish safeguards with their digital systems to protect electronic protected health information (ePHI) and prevent a …

What does 2015 have in store for the data center and cloud computing industries? We sat down with Online Tech co-CEOs Yan Ness and Mike Klein to get some of their informed predictions: Klein on the changing customer requirements for cloud and data centers: “One of the most significant trends in the cloud and data center market in 2015 will be the way companies in industries outside of healthcare, retail and finance start to incorporate security and privacy into their …

As we all take a step back to reminisce about the past year and drop the ball on a new one, those of us at Online Tech have plenty of achievements to celebrate. We’ve called this, our 20th year of existence, “the most ambitious and successful 12 months” in the company history in a recent press release. That’s notable, considering our 20th anniversary story about how we’ve evolved from being Michigan’s first ISP in 1994 to a leader in secure …

When Online Tech opened its Indiana Data Center earlier this year, co-CEO Mike Klein said the company “saw a gap in secure cloud and data center infrastructure serving Indiana.” That gap continued to be filled when Online Tech launched its new and improved cloud infrastructure in mid-December, creating the only truly PCI, HIPAA and SOX-compliant cloud in Indianapolis. The enterprise-level cloud is built on EMC XtremIO all-flash array technology that offers clients faster application response times while increasing reliability and …

When you create a list of who you’re thankful for, your auditor may not jump to the top of your list. After all, isn’t that who asks for all those mountains of documents and relentlessly asks those probing questions? Let’s face it: the relationship between a business and an auditor can be a contentious one. The high price of reports, resources spent compiling the information and remediating any issues can be more than enough to give any CXO heartburn and …

Get started now. Exceptional service awaits.

Live Chat