Encrypting Data to Meet HIPAA Compliance

To address the question of whether or not to use data encryption when it comes to meeting HIPAA compliance and keeping patient health information (PHI) protected, let’s revisit the Health Insurance Portability and Accountability Act of 1996 (HIPAA): A covered entity must, in accordance with §164.306… Implement a mechanism to encrypt and decrypt electronic protected health information.” (45 CFR § 164.312(a)(2)(iv)) If you choose not to encrypt data, the HIPAA Security Rule states you must implement an equivalent solution to meet the regulatory requirement. The law leaves encryption open to interpretation since covered entities vary when it comes to network and network usage, depending on the type and size of business.

Read the source article at Managed Data Center News

Join Our Newsletter

Get Updates Direct to Your Inbox. Gain access to a rich library of articles, white papers, webinars, podcasts and more. Register today to receive eMDs Insights newsletter.

*
*
*
*
Specialty *
State *