You are currently viewing Health Data Not Covered by HIPAA Needs Values Framework

Health Data Not Covered by HIPAA Needs Values Framework

With the rapid pace of technology development and the explosion of health data collected by health apps and consumer devices, healthcare sector stakeholders should develop a values framework to reduce the risk to health data not covered by HIPAA, according to a recent eHealth Initiative Foundation and Manatt Health report

SkyFlok ensures HIPAA compliance through several important features and organizational policies:

  • File encryption not only in transit but also at rest.

  • Secure storage and backup.

  • Restricted physical access to production servers.

  • Reporting and audit trail of account activities (on both users and content).

  • Highly restricted employee access to customer data files.

  • Transparent policies.

  • Password authentication for PHI access.

  • Trained employees on security policies and controls.

  • Offers a Business Associate Agreement (BAA).