HIPAA and GLB Compliance
HIPAA
HIPAA calls
for strict protection of patient information and clear
disclosure of a medical provider's privacy policy.
HIPAA regulations require that patient information sent
by electronic means (email, website forms, online
messaging) must be protected against unauthorized
access.
The Administrative Simplification provisions of the
HIPAA require the Department of Health and Human
Services to establish national standards for electronic
health care transactions and national identifiers for
providers, health plans, and employers. It also
addresses the security and privacy of health data.
Adopting these standards will improve the efficiency
and effectiveness of the nation's health care system by
encouraging the widespread use of electronic data
interchange in health care.
Complying with HIPAA is challenging because this
regulation affects so many areas, including standards
for transactions, rules for data privacy/security,
standards for clinical records and more.
GLB
The
Financial Modernization Act of 1999, also
known as the “Gramm-Leach-Bliley Act” or GLB
Act, includes provisions to protect
consumers’ personal financial information
held by financial institutions. There are
three principal parts to the privacy
requirements: the Financial Privacy Rule,
Safeguards Rule and strong “pretexting”
provisions.
The Financial Privacy Rule governs the
collection and disclosure of customers’
personal financial information by financial
institutions. It also applies to companies,
whether or not they are financial
institutions, who receive such information.
The Safeguards Rule requires all financial
institutions to design, implement and
maintain safeguards to protect customer
information. The Safeguards Rule applies not
only to financial institutions that collect
information from their own customers, but
also to financial institutions – such as
credit reporting agencies – that receive
customer information from other financial
institutions.
IT Dilemma
The ongoing boom of technology development has brought
with it an astounding number of information systems,
each designed to streamline business and medical
processes through electronic automation.
With so many new systems being introduced for managing
your practice, patients, supply chains and business
information, medical professionals are being challenged
now with how to find a cost effective way to integrate
and maintain this increasing number of information
systems across a rapidly-growing number of different
networks and platforms.
At the same time, medical professionals are also
challenged by the need to provide increased access to a
larger and more dynamic group of end-users.
The challenge we have of managing these systems has
resulted in a complex Medical IT dilemma that consists
of three main components:
-
CONTROLLING YOUR COST
-
INCREASING ACCESS TO
INFORMATION
-
MAINTAINING SECURITY
The
consequence of this globalization is that IT
departments are now being forced to increase access to
information for both employees and partners and
customers. These pressures are driving professionals to re-evaluate their security and
information architecture to accommodate the
increasingly dynamic ways in which a growing number of
parties want to interact.
Sienna Design Group understands
the importance of these regulations and clearly defines how
we can help you maintain HIPAA and GLB
compliance through:
Sienna Design Group can also
provide you with contact forms that comply with HIPAA
and GLB regulations as well as email addresses for your
primary domain. Additional services can be purchased
through us including:
-
Virtual Private Networking
service
-
Secure Email to Fax
-
Secure File and Document Transfer and
-
Large File Transfer (up to 1+ Gigabyte files)
|
