Health Insurance Portability and Accountability Act (HIPAA)
HIPAA was enacted in 1996 to improve the health insurance system in the United States and provide individuals with the ability to control their own health information. HIPAA ushered in a new era for data privacy by encouraging a move from paper to a more shareable electronic health records (EHR) as set forth in the Privacy and Security Rules.
The Privacy Rule established minimum standards for protecting electronic personal health information (ePHI) transactions.
The Security Rule established administrative, physical and technical safeguards to ensure confidentiality, integrity and security of ePHI.
The Health Information Technology for Economic and Clinical Health (HITECH) Act expanded upon HIPAA in 2013 by defining new rules for reporting breaches of unsecured ePHI and significantly increasing financial penalties.
HIPAA HITECH Compliance and DataKeep™
Encrypts personal health information
Manages access to personal health information by role or process
Audits data access requests/denials for encrypted personal health information
Manages policy and encryption keys from creation, through rotation to deletion
Keep Private Data Private
SecurityFirst software provides a broad range of features that include access management, integrated key management, sophisticated encryption and event logging to protect you from the destructive impact of a data breach.
HIPAA defines a breach as an impermissible use or disclosure under the Privacy Rule that compromises the security or privacy of PHI. Following a breach, covered entities must inform affected individuals, the HHS and even the media; however, notification is only required if the breach involved unsecured ePHI.
DataKeep provides a broad range of features that include data access management, integrated key management, sophisticated encryption and event logging to deliver the scalability and flexibility to help protect the most sensitive workloads and easily integrates into your current security environment.