A Professional Internet Security Provider

Timely Security Issues HIPAA Compliance Small Business IT Safety Solutions SNMP and DHCP Web Worms Honeypots SOAP/XML Interfaces Service Offerings Custom VPN Work Security Certification Policy Facilitation Intrusion Detection Systems Integration Other Services Products and Partners Security Toolkit Spam Control Custom Software Partners Resource Library Internet Security Corporation About Us

HIPAA and Security The three legs of the Health Information Portability and Accountability Act stool are Codes and Formats, Privacy Procedures, and Security. Where we fit in is the security leg. While there are numerous medical information packages and services available for assisting small to medium size medical practices to comply with transactions standards, the security angle is more complicated than merely stating a policy. Saying "We require patient consent to transfer any information to any counterparty" is helpful, but it only addresses Privacy Policy and doesn't make you compliant. Ultimately compliance depends on the willingness of each possessor of patient information to be scrupulous and diligent with transmission and storage of this information. You must diligently protect your local and home office data traffic and storage. While it hasn't made the daily headlines, every month there seems to be at least one instance of customers' credit card information being stolen and posted on the world wide web by mischievious teenagers or other hackers. If you have a connection to the Internet for any purpose, including a dial-up connection, then you can be, and probably even have been, hacked by somebody. Your patient data could be posted on some public web site, or, worse in many ways, you could be extorted to prevent such harmful disclosure at any time. Not to distract from your first two HIPAA concerns: Data Formats, and Roles and Authorization procedures, but Security is also an issue you must address in your own office. This applies independently of any service provider, which might be HIPAA compliant, or claim to enforce compliance policies. These applications and services can only enforce compliance in their own areas. Our security solution is a simple, inexpensive, one-shot solution to solve your home and office PHI security issues all in one go. Building on 1) our technology security solution, your 2) format and access solutions from your service or software vendors, and 3) policies and procedures checklists will leave you able to sleep soundly, assured that no matter what happens, you are in compliance with the HIPAA statutes, and not liable for any more risk than you already have. Call or email Brad (408) 979-7788 at Total Corporate Services for a quote on one of our HIPAA certifiable hardware solutions.

---

webmaster@internet-security-corp.com

Last modified: Thu Jun 27 18:52:49 PDT 2002