1. HIPAA and Cloud Backups

Industry insights

In the healthcare industry, storing ePHI while remaining HIPAA compliant can be a tricky task. While some covered entities may opt for storing their ePHI onsite, many others rely on cloud backup servers from 3rd-party providers to safeguard their ePHI. When you choose...

2. HIPAA Business Associate Agreement (BAA) — What It Is & Why It’s Important

Industry insights

What is a Business Associate Agreement (BAA)? It has become necessary for HIPAA-covered entities to set up partnerships with other organizations to safeguard their healthcare data assets. The contracts for these partnerships, which specify what each party is...

3. HIPAA Training Requirements

Industry insights

HIPAA regulations are far-reaching and apply to many types of covered entities. From single-doctor practices to enterprise hospital networks and the business associates that each works with, everyone is required to be HIPAA compliant. Since HIPAA applies to such a...

4. 2-Factor Authentication versus Multi-Factor Authentication for HIPAA

Industry insights

What is 2-factor authentication (2FA) vs multi-factor authentication (MFA)? 2-factor authentication is a security measure where users must confirm who they are by providing just two pieces of proof before they can receive access to a device (e.g. computer, phone),...

5. HIPAA Password Requirements

Industry insights

When it comes to protecting ePHI, one of the first lines of defense is a strong password policy for all systems that house sensitive information. HIPAA has set out guidelines for creating, changing and protecting passwords. It’s critical that covered entities follow...