| A
Quick Summary: |
| The Health Insurance Portability and Accountability Act (HIPAA) consists of a series of administrative, technical, and physical security procedures that organizations must use to ensure the confidentiality of electronic protected health information (EPHI).
It is routine for healthcare organizations to use various IT applications for billing, payment, clinical decision-making, and workflow management. As personal and confidential information passes between health providers, employers, insurance companies and clearinghouses, organizations must protect this data and be HIPAA compliant.
|
|
The
PowerTech Solution
PowerTech software solutions facilitate HIPAA compliance in a number of specific ways. Specific sections of the technical and administrative safeguards of the security rule, which took effect in April 2005, are referenced below.
Network Security enables companies to implement access control policies (164.312(a)(1)) that restrict access to only those persons or software programs that have been explicitly granted rights. The secure screen feature in Network Security also enables automatic logoff.
PowerTech's Single Sign-On service offerings, along with the Easy Pass product, help companies to ensure they have unique user identification and that there are effective policies in place for password management and termination of employees.
Many companies use the capabilities of Authority Broker to implement Emergency Access Procedures (164.312) that are monitored and controlled.
Compliance Monitor can be used to implement a set of Audit Controls (164.312(b) (R)) with reports that can be run on a regular basis, collecting consolidated data from multiple systems.
Central Admin simplifies the task of defining access control rules across multiple systems. |
| |
