In the healthcare industry, storing ePHI while remaining HIPAA compliant can be a tricky task. While some covered entities may opt for storing their ePHI onsite, many others rely on cloud backup servers from 3rd-party providers to safeguard their ePHI. When you choose...
What is a Business Associate Agreement (BAA)? It has become necessary for HIPAA-covered entities to set up partnerships with other organizations to safeguard their healthcare data assets. The contracts for these partnerships, which specify what each party is...
HIPAA regulations are far-reaching and apply to many types of covered entities. From single-doctor practices to enterprise hospital networks and the business associates that each works with, everyone is required to be HIPAA compliant. Since HIPAA applies to such a...
What is 2-factor authentication (2FA) vs multi-factor authentication (MFA)? 2-factor authentication is a security measure where users must confirm who they are by providing just two pieces of proof before they can receive access to a device (e.g. computer, phone),...
When it comes to protecting ePHI, one of the first lines of defense is a strong password policy for all systems that house sensitive information. HIPAA has set out guidelines for creating, changing and protecting passwords. It’s critical that covered entities follow...