health care mobility: staying securely connected
TRANSCRIPT
Mobility: How to Stay Securely Connected
Presented by: ettins’ Law, LLC 513-400-3598 [email protected]
Ways to Stay Connected
Software as
Service [SaaS]
Virtual
Private
Networks
[VPN]
Text
Web Portals
Cloud
Storage Instant Messaging
Wifi
File Share
Privacy and Security Rules do not Prohibit Mobility
To the contrary, privacy and security rules contemplate mobility.
Security Pressure Points
•Applications
• Transmission couriers
•Devices
•Users
Applications
• Email: messages sent via an internet connection.
• Texting: messages sent via phone network.• Cloud Storage: documents saved on 3rd party
server and accessible via an internet connection. Drop Box is an example.
Applications
• File Share: allows access to electronic materials via a hyperlink. Google, Cisco, and others offer file share applications.
• SaaS (Software as a service): subscription software available via the internet. Common software is not available as an SaaS including Quickbook, Adobe, and CRM systems, Outlook.
• Web Portals: File sharing via website interface.
If applications store patient information- they are a BA and must follow standards.
Transmission Couriers
• Wifi: a wireless connection to the internet.
• VPN (virtual private networks): A private connection via the internet to a network or device.
• Cellular Connection: connectivity using a phone network
Transmission Couriers are not Business Associates
Health Plans, Medical Providers, and Business Associates must use reasonable
safeguards when transmitting information.
Devices
• Desktop and laptop computers
• Cell phones
• Tablets
• BYOD
Users
Patients and Staff need to be educated
about security threats and safeguards.
Patients
• Advise patients about the risk associated with connectivity.
• Get patients’ consent.
• Only share the minimum amount necessary.
Staff Training
Educate your staff about the risks, office policies, and reporting
procedures.
Presented by:
Offering Privacy and Security
• Standards Manuals,
• Training,
• Analysis/Assessments,
• Tracking/Monitoring
www.gettinslaw.com 513-400-3895 [email protected]