What is HIPAA
Home

HIPAA Security Rule

HIPAA Security Rule lays down the standards that covered entities must comply with in order to put into place the best security measures to protect electronically documented medical information of patients and consumers.

Non-compliance of this security rule could penalize the concerned entities anywhere from $100 for each broken rule up to $25,000 for every year that the violation has not been corrected.

The security rule not only sets the security standards to protect health information of patients, but the rule likewise hopes to raise the standards of health care facilities, health insurance companies and other covered entities when it comes to effectiveness and efficiency.

General Information on HIPAA Security Rule

As previously mentioned, the security rule has for its main goal the welfare of patients and customers of health insurance providers by protecting their right to privacy.

Any information stored in the data bank of covered entities should not be easily accessible by people who are not authorized to access such information.

In this regard, one of the stipulations in the Security Rule is designating one person to oversee the security of the stored data in the agency’s information system and specifying employees or individuals who may have access to the information stored therein.

Limiting access to the information to qualified personnel whose jobs require getting access to said medical information reduces the risk of unlawful sharing of a patient’s or customer’s medical records to other entities.

Security on Technology

For data stored in a company’s information system, there needs to be a form of highly-efficient security where the information may not only be inaccessible to unauthorized individuals or entities but also that during electronic transport of information, no data will be intercepted while in transit.

In this regard, security software of the highest caliber should also be in place. The kind of security software that you choose should work specifically for the kind of technology you are using for your information system.

Software that does not conform to technology you put in place could leave a backdoor open for unlawful intrusions.

Setting Standards for Your Information System

It is important that you set specific standards to apply to your information system in order to not only have an efficient documentation of all relevant information but also to have a designated data bank for all of a patient’s or customer’s medical records plus all other data directly related to these.

This makes it easier when you need to be audited or checked. Likewise, should any issue arise, you have every legal document stored for reference.

Leave a Comment

Please note: Comment moderation is enabled and may delay your comment. There is no need to resubmit your comment.

Main menu

Additional Resources

 
© 2012 What is HIPAA Privacy Policy