Tag: hipaa cloud hosting

Online Tech is profiling several clients that will join us at the HIMSS14 annual conference and exhibition on Feb. 23-27 in Orlando. Read more here. Stop by booth #3904 to learn more. Gavin Murphy helped to grow a healthcare delivery nonprofit from minimal annual revenue to over $100 million in just three years. Understanding and helping to solve the operational bottlenecks that developed convinced him that he could help other nonprofits to do the same, particularly in healthcare. Murphy and …

A guest blog from HITECHAnswers.net lists security tips from HHS.gov to help ensure that patient data is secure in a BYOD (Bring Your Own Device) environment that includes the use of personal devices such as iPhones and iPads in the workplace. One of HealthIT.gov’s tips includes encrypting data stored locally on your mobile device as well as data sent by your device (data at rest and in transit). While device encryption can provide one layer of defense, if you go …

A few weeks ago, we attended the HIMSS Privacy & Security Forum in Boston and liveblogged the panel discussion, Managing Security Risks of Health Data in the Cloud. The speakers provided a list of questions to ask in order to manage cloud security risks, as HealthITSecurity.com outlined below. As a HIPAA compliant cloud host, the bolded text is our response to their questions: Have you looked at the cloud provider’s application and/or network architecture? This applies more to the SaaS …

Attention hosting companies currently supporting healthcare clients: get compliant or get out of the game. For those still unaware, cloud hosting and other IT vendors involved with the storage or transmission of healthcare data must meet HIPAA compliance by…two days ago (September 23). So, by the end of the year, at least, for all you laggers. Here’s what happens if you are not compliant, and still continue to serve healthcare clients: You may be subject to an audit conducted by …

It wouldn’t be a privacy and security forum if we didn’t speak to health data in the cloud. Lee Kim, Director of Privacy & Security for HIMSS had a panel discussion with Phil Curran, Chief Information Security Officer of Cooper Health Systems, named “Managing Security Risks of Health Data In the Cloud”, where they dug into potential pitfalls with some cloud service providers, and how to circumvent some of those risks. Lee provided many practice tips for safeguarding health data …

Although SAS 70 (Statement on Auditing Standards) has been dead for quite some time now, we’ve found that those lagging in the health IT industry may still be confused about why SAS 70 is no longer the audit to look for when it comes to ensuring security with a cloud hosting provider. In fact, false information about SAS 70 as a qualifier for cloud computing security supporting the healthcare industry is still an issue. Some suggest that SAS 70 is …

A recent healthcare data breach was reported by HealthDataManagement.com as a result of a stolen unencrypted laptop, a component of a diagnostic imaging machine. Retinal Consultant Medical Group notified patients that their names, DOBs, gender, race and optical coherence tomography (OCT) images were stolen in June. Although their privacy officer listed one of their remediation actions included increasing their physical security of imaging and other equipment, another way to keep very large medical imaging data safe is by keeping the …

The deadline draws near – September 23, 2013 marks the date of when both business associates (now including cloud service providers) and covered entities must meet the HIPAA Omnibus rule, released in January to update the 15-year-old law. A refresh is needed particularly to meet advancing technology and the push to electronic health record systems (EHRs) to streamline patient care and increase the healthcare industry’s efficiency in hopes to reduce healthcare costs. The cloud is a big player in this …

Reuter’s reports that WellPoint, Inc., the second largest U.S. health insurer, has reached a $1.7 million settlement with the Dept. of Health and Human Services as result of a data breach that exposed over 600k health records. WellPoint’s online database was found to be problematic for a few different reasons, as outlined in their resolution agreement. Read on for possible technical and strategic security solutions you can employ in your organization to avoid a similar fate: Problem 1: Lacking technical …

According to DetroitNews.com, personal information of 49,000 individuals – including that of names, SSNs, DOB, cancer screening test results and dates of completion – were accessed by hackers recently. The data resided in a password-protected area of the Michigan Cancer Consortium website hosted on a private company’s server. However, a Michigan Department of Community Health (MDCH) spokesperson claims that the breached information does not qualify as a medical record, and therefore the agency is not subject to complying with the …

Get started now. Exceptional service awaits.

Live Chat