July 20th, 2015 by Gil Vidals to HIPAA Blogs
The state of California is no different than other states when it comes to existing loopholes in federal laws and regulations. These loopholes continue to allow for breaches in patient health information (PHI). Common ways that patient information has been leaked are from the Explanation of Benefits letters and communications from Health Insurance plans.
May 29th, 2015 by Gil Vidals to HIPAA Blogs
The HIPAA privacy and security rules require certain steps be taken during the destruction or removal of PHI (protected health information). These portions of the act mandate “reasonable safeguards to limit incidental, and avoid prohibited, uses and disclosures of PHI.” What this means is that if HIPAA data is left in a trash can or an old hard drive that is replaced and discarded, HIPAA is violated.
April 27th, 2015 by Gil Vidals to HIPAA Blogs
When choosing a HIPAA hosting plan, the difference in price between providers (and different plans offered by the same provider) is often driven by the features offered in that hosting environment. Not every hosting environment is the same. In fact, no two are exactly alike. Aside from the absolute minimum amenities required by HIPAA, every host is obliged to offer a variety of options to fit a variety of implementations.
February 13th, 2015 by Gil Vidals to HIPAA Blogs
Finding a cheap HIPAA Compliant Hosting plan is important for any business that requires cloud hosting for their patient’s information. When dealing with sensitive patient information, such as electronic health records (EHR) or any protected health information (PHI), then HIPAA Compliance is required and mandated by Federal Law. HIPAA Compliant Hosting adheres to strict guidelines outlined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to provide the security of the data that standard web hosting does not provide. So for a growing business, finding a cheap HIPAA Compliant Hosting Provider is critical.
February 12th, 2015 by Gil Vidals to HIPAA Blogs
Google Apps is a suite of tools that has become widely-used over the last several years. Providing email, calendar, and document storage in the form of Google Drive, Google Apps is filling the role that Microsoft Office used to fill in many cases. However, for health professionals, the question remains as to if Google Apps is HIPAA Compliant. The answer is yes, but in its default form, Google Apps is not HIPAA Compliant. Extra steps must be taken in order to use Google Apps to transmit or notate PHI.
February 5th, 2015 by Gil Vidals to HIPAA Blogs
When answering the question of “Is Windows HIPAA compliant ?”, one comes to the same answer as any other Operating System or software solution: it depends. First, Windows is not inherently non-HIPAA compliant. It is possible to set up a workstation built on the Windows platform that fulfills all of the requirements of each aspect of HIPAA. However, there are many caveats for which one has to account for.
February 3rd, 2015 by Gil Vidals to HIPAA Blogs
Often, the barrier that provides many companies and startups from expanding at a fast pace is the cost of entry for HIPAA Compliant Hosting. Because of the sensitive nature of PHI, HIPAA requires that the hosting environments be specially monitored in ways that are not required of the non-HIPAA sector. However, this type of increased security comes at a time cost for the provider, and a financial cost for the client: It is simply more expensive to host HIPAA data than non-HIPAA data. However, the barrier for entry need not be insurmountable. It is possible to find an inexpensive solution that still meets the safeguards required by HIPAA.
January 22nd, 2015 by Gil Vidals to HIPAA Blogs
HIPAA Compliance involves many comprehensive standards and procedures, which are absolutely necessary when you have Patient Health Information to protect. Anybody looking for a HIPAA Compliant solution should be aware that logs have strict retention requirements under HIPAA standards and have a specific retention process.
January 15th, 2015 by Gil Vidals to HIPAA Blogs
Just like with the Windows desktop distributions (XP, Vista, 7, 8), the Windows Server architectures can be problematic for HIPAA compliance, or they can be perfectly fine solutions on which protected health information (PHI) can reside. With diligent care, a computer running Windows Server can comply with all aspects of HIPAA.
December 16th, 2014 by Gil Vidals to HIPAA Blogs
When it comes to building your website, a CMS (Content Management System) is usually a solid choice, as they are an easy-to-use and convenient way to build and manage your website and to update content quickly and efficiently. CMS is a powerful way to build and maintain a website by using a platform that requires very little technical prowess and minimal knowledge (if any) of website coding. Being responsible for protecting patient privacy, extra steps need to be taken to ensure that the CMS-of-choice is indeed HIPAA Compliant.