Health Insurance Portability and Accountability Act - HIPAA
Summary
All business which handle, maintain, store or exchange private health or patient related-information, regardless of size, are subject to HIPAA. In addition to health care providers and insurers, this includes employers maintaining employee health records, life insurers, public health authorities, organ donation banks, pharmacies, long-term facilities, billing agencies and clearinghouses. Each instance of intentional unauthorized disclosure is punishable by fines up to $250,000 and possibly 10 years of jail time.
Key questions for information technology include:
- Section 164.312 establishes safeguards for electronic storage and maintenance of individual health information. Organizations must ensure the confidentiality, integrity and availability of all protected electronic information it creates, receives or transmits.
- Mandates the use of security measures in 164.312(e), like encryption, to protect electronic health information from unauthorized access while being transmitted over electronic networks.
- In HIPAA section 164.312 the law establishes strict requirements regarding user access, authentication and data protection.
- Section 164.308 requires covered entities to establish contingency plans for responding to emergencies which damage systems containing electronic protected health information. This includes the ability to maintain retrievable copies of electronic records and having disaster recovery plan to restore any loss of data.
- Section 164.312(b) establishes audit controls to determine when messages were delivered, manipulated or when administrators accessed the system.
MobileMandate Key Benefits
MobileMandate is designed to support the the flow of text messaging, pin to pin,
and BlackBerry® Messenger througout your organization. Our intuitive user interface and advanced reporting capabilities provides yor team
with the ability to get the job done quickly, effectiviely, and efficiently.
Effective Management
- Ensure every SMS message passing through your organization is archived
and readily available
Collaboration
- Create roles and responsibilities for managing mobile messaging
Proactive Platform
- Build reports to find policy breaching events like wall crossing
and receive alerts when those breaches happen
Evidence Supervision
- Provide complete workflow audit trails of who has acted upon any
message
Automation
- Automate email and reports engaging users to assist with supervision
Security
- Secure hosted content with full disaster recovery