Healthcare HIPAA IT compliance Risk Assessment
qqq
Managed IT Services Phoenix Arizona
Call Us: 602-216-0960

We are very familiar with HIPAA compliance from a technical IT perspective.  We’ve invested in tools to allow us to scan your network to identify possible violations and to provide a report showing your best effort to comply to all HIPAA regulations from a network/data security perspective.

From the BAA’s that you need signed to work with all vendors, to the detailed configurations needed in your O365 setup, we have you covered.

We can identify the specific laws you may be breaking, and what simple or complex remedies are needed to mediate the risks.

When a HIPAA audit comes, you need to be prepared, you need to show best effort in many aspects of your business from Encryption in-transit to Data at Rest.

Network Security Audits for the Healthcare Industry

Knowing what’s going on with your healthcare IT and security systems can be very advantageous to your practice. With a Network Security Audit from Phoenix Synergy, we will analyze  your information technology, identify areas of risk within your infrastructure, and recommending solutions to mitigate risks that were found.

Here are some of the top Violations:

1. Employees disclosing information

2. Medical records mishandling

3. Lost or Stolen Devices

4. Texting patient information

5. Social Media

6. Employees illegally accessing patient files

7. Social breaches

8. Authorization Requirements

9. Accessing patient information on home computers

10. Lack of training

 

EXAMPLES OF HIPAA VIOLATION SETTLEMENTS

Memorial Healthcare System – Inappropriate Access of Patient Information

Memorial Healthcare Systems has to pay a $5.5 million settlement due to the failure of having the proper audit controls. The nonprofit corporation had employees and users at affiliated physician offices inappropriately access patients’ names, date of births and social security numbers of up to 105,646 people. It was discovered that the corporation failed to have procedures in place to review information system activity on a regular basis to discover any privacy breaches, and failed to have the appropriate authorization policies in place.

MAPFRE Life Insurance Company – Unsecured Electronic Health Information

The MAPFRE Life Insurance Company will be paying $2.2 million towards their HIPAA settlement for noncompliance. The life insurance company reported a breach of data when discovering electronic patient health information (ePHI) for 2,209 people was stolen from the IT department. The data information was left on a USB drive that was not properly secured. It was concluded that MAPFRE had failed to implement encryption methods and other alternative methods to safeguard information on removable storage media devices and laptops.

Presence Health – Misplaced Operating Room Schedules

The Presence St. Joseph Medical Center, which is part of the Presence Health hospital system, was found in violation of HIPAA due to the mishandling of operating room schedules. The paper-based schedules contained protected health information for 836 people as the operating room schedules went missing. Presence Health also experienced delays in reporting the breach to those patients who were affected due to miscommunications between their workers. The medical center has agreed to settle its HIPAA violations for $475,000.

Latest news

Address

Phoenix Synergy
2432 W Peoria Avenue, Suite 1022
Phoenix, AZ, 85029
Phone: 602-216-0960
Fax: 602-216-0962

Email address: Info@phoenixsynergy.com
Sales Inquires: sales@phoenixsynergy.com

Find us Here!

Click to open a larger map