 HIPAA
regulations have changed way
many physician offices work.
Security and confidentiality are cornerstones of the
HIPAA rules.
If your
organization is a Covered Entity
(one that must comply with HIPAA),
it is imperative that you
understand the rule and take the
necessary steps toward
compliance.
What is HIPAA
Security Rule?
The rule applies
to electronic protected
health information (EPHI),
which is individually
identifiable health information
(IIHI) in electronic
form. IIHI relates to 1) an
individual's past, present, or
future physical or mental health
or condition, 2) an individual's
provision of health care, or 3)
past, present, or future payment
for provision of health care to
an individual. The primary
objective of the Security Rule
is to protect the
confidentiality, integrity, and
availability of EPHI when it is
stored, maintained, or
transmitted.
Who Does It Apply
To?
Covered Entities (CEs)
must comply with the Security
Rule. These are health plans
(HMOs, group health plans,
etc.), health care
clearinghouses (billing and
repricing companies, etc.), or
health care providers (doctors,
dentists, hospitals, etc.) who
transmit any EPHI.
How Do I
Implement It?
CEs must maintain reasonable and
appropriate administrative,
physical, and technical
safeguards to protect the
confidentiality, integrity, and
availability of their EPHI
against any reasonably
anticipated risks.
CGI can assist your
physician group with
services tailored to unique needs.
- IT
Infrastructure and Network
Audit
- Network
Administration
- Network
Penetration and Security
Assessment
- Technical
Support
-
Encryption and control of
mobile devices such as
laptop, PDA and backup
storage
- Remote
connection for physician's
home office (VPN)
- Paperless
Office Solutions
|
