COMPLIANCE
The HIPAA Privacy Rule
The HIPAA Privacy Rule provides federal protections for personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes. The Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information. Competant gs is committed to helping our clients comply with all applicable HIPAA standards within the timeframes established by law.
We take all compliance related concerns of our customers very seriously and we address them proactively. Our delivery centers houses the most technologically advanced infrastructure to handle data security issues. Here is how we go beyond the basics.
Data Confidentiality
In view of the sensitivity associated with the Healthcare Information, all our teams works on fully locked down dumb terminal PC's which don't have a floppy drive, CD drive or a USB port. No process executive has an email access and there is no movement of data across the globe.
The teams have restricted remote access to the client's software applications and tools enabling them to do the work required to accomplish the required services only in a secure manner. Specific client networks are physically isolated and have dedicated firewalls into the client's network for an additional security.
Physical Security
In our delivery center no one is allowed in without screening and no one is allowed to bring in or take any information capture devices including mobile phones and cameras. The facility is truly locked down with access only to authorized individuals in client specific areas protected by card readers and biometric technology enabled secure access systems. A 24x7 security force physically guards the facility from any unauthorized access.
Employee Hiring & Background Checks
Our HR department conducts extensive background checks on all new employees prior to our "employee confirmation process." Once confirmed, employees can access our system only with valid logons and passwords. Furthermore access to sensitive information is on a "need to know basis" and we constantly keep watch to prevent any of our clients' data from being accessed except by authorized employees. In addition, all our employees receive confidentiality training (as required by HIPAA) and must sign confidentiality agreements.
The Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information.