Achieving Healthcare Information IT Privacy and Security
Author: Jared Rhoads
Information privacy and security are mission-critical issues to healthcare IT, especially now that the proposed changes to HIPAA are about to be finalized and now that organizations must attest to having completed a comprehensive HIPPA risk assessment in order to achieve meaningful use. There are many new and changing rules to comply with, but fortunately much of what is contained in the rules should be part of an organization’s health care privacy and security strategy anyway.
The Global Institute for Emerging Healthcare Practices is the applied research arm of CSC’s Healthcare Group.
In this paper, CSC provides a status update on three HIPAA-related topics: accounting of disclosures, encryption, and two-factor authentication, and explain key concepts like what it means for a requirement to be “addressable.” The authors then describe the basic steps involved in completing a HIPPA risk assessment, including: evaluating your risks, correcting your deficiencies, and maintaining your processes and technologies.
For more information on healthcare IT privacy and security, please contact us.