1 / 3

HEALTH INSURANCE SERVICE PROVIDERS SHOULD UNDERSTAND EVERY ASPECT OF HIPAA COMPLIANCE IN THE CLOUD

In order to safeguard this personal healthcare information from theft and fraudulent activities and providing HIPPA Compliance in the Cloud privacy, Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 by the legislation of the United States, as there were seen many threats and cyber-attacks on such providers of health insurance.

bhumikasharma
Télécharger la présentation

HEALTH INSURANCE SERVICE PROVIDERS SHOULD UNDERSTAND EVERY ASPECT OF HIPAA COMPLIANCE IN THE CLOUD

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HEALTH INSURANCE SERVICE PROVIDERS SHOULD UNDERSTAND EVERY ASPECT OF HIPAA COMPLIANCE IN THE CLOUD Compliance issues related to HIPAA in cloud computing service has become a vital topic today as more and more covered entities (CEs) finding this option of data storage, data management, and data sharing more user-friendly and seamless. The act has some clear directions as far as the patients’ data management is concerned. If these rules are not followed, the health service providers can get legal notice for a data breach. Cloud service providers are not considered as business associated with health-care service providers; hence, under HIPAA they fall under rules like any other business associates. ENACTMENT OF HIPAA, 1996 While opting for health insurance, the insurer entrusts them by providing many sensitive information. In order to safeguard this personal healthcare information from theft and fraudulent activities and providing HIPPA Compliance in the Cloud privacy, Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 by the legislation of the United States, as there were seen many threats and cyber-attacks on such providers of health insurance. HIPPA, 1996 is applicable to any covered entity which gathers, generate and transfers the electronically protected information regarding health and the business associates of the entity who comes in contact with such information via work. A compulsory set of standards regarding the laws and disclosure of protected health data has been laid down by the act to comply. In case of a breach, the entities are bound to inform the concerned individuals within sixty days of discovery that there was a breach. It has been made clear by the Act that violation will lead to civil and criminal penalties and appropriate authorities i.e., the Office of Civil Right may give the order to investigate, take disciplinary actions and where the necessary penalty will be imposed.

  2. IMPORTANCE OF CLOUD SERVICE PROVIDERS Due to the benefits of cost-effectiveness, adaptability, and scalability, the covered entities are opting for storing the protected health information in the cloud. Cloud Computing is mainly a model that has been developed to help conveniently and extensively accessing the networks and services with minimum interference. The cloud storage helps the employees of the organization to stay connected during work as they can access the digital data and medical images which are stored off-site in the cloud from various locations and in this way it assists in increasing efficiency and save resources and money It has been specifically addressed in the HIPAA Act, 1996 that the Cloud Service Providers (CSPs) needs to comply with the governing rules of HIPAA.

  3. The Covered Entities (CEs) have a choice to select from three models have been developed for Cloud Storage namely:- 1.SaaS known as Software as a Service – access to particular software functioning, example email and necessary maintenance and upgradations of the software are provided the CSPs, 2.PaaS is known as Platform as a Service –remote access to computing power by the customer and need not handle the software upgradation. 3.IaaS known as Infrastructure as a Service- the CSPs focuses only in networking, hardware and related maintenance whereas the customer handles the maintenance of software installation and operating system. Summary - Health Insurance service providers are taking the opportunities that cloud service providers offering these days. Use of cloud service has multiple benefits to the health insurance providers. However, they need to keep in focus the rules and regulations as laid down by HIPAA, 1996. This act has certain rules regarding patients’ data management and how business associates should act in managing patients’ data. Cloud service providers are also considered business associates; hence, any data breach can summon legal action against both the health service provider and cloud service provider. Contact Info 1390, Market Street, Suite 200, San Francisco, California- 94102 Mail: info@c3m.io Sales: sales@c3m.io Partnership: partner@c3m.io Website: www.c3m.io

More Related