SlideShare a Scribd company logo

Maintaining HIPAA Compliance with Cloud Based Solutions

Compliancy Group
Compliancy Group

Cloud computing is here and bigger than ever. Learn how to use this emerging technology to become and maintain your HIPAA compliance. File sharing HIPAA risks Sync Unauthorized sharing Recursive sharing Scattering of data Lack of Auditing Current most common HIPAA breaches Lost or stolen devices – over 1M per week, 22% lost phones last year Consequences – need to report, fines Panelists: Asaf Cidon, Sookasa Bob Grant, The Compliancy Group Moderator: Marc Haskelson, President, The Compliancy Group LLC.

Health & Medicine
1 of 20
Industry  leading  Education   Certified  Partner  Program     •  Please  ask  questions   •  For  todays  Slides   http://compliancy-­‐group.com/slides023/   •  Todays  &  Past  webinars  go  to:   http://compliancy-­‐group.com/webinar/     855.85HIPAA   www.compliancygroup.com  
Maintaining  HIPAA  Compliance:   Cloud  File  Sharing  and  Mobile  Devices   Asaf  Cidon   CEO,  Sookasa  
Cloud  File  Sharing  is  Booming   Dropbox   200M  Users   Google  Drive   120M  Users   Box   20M  Users  
Healthcare  Use  Case:   Sync  and  Backup   •  Sync  and  backup   –  TranscripLons   –  PaLent  charts   –  Medical  bills   •  Low  cost  alternaLve   –  $100-­‐200  per  seat  
Healthcare  Use  Case:   Mobile  Access   •  Mobile  access   –  Access  paLent  charts  on-­‐the-­‐go   –  Work  from  home   –  Home  care  
Healthcare  Use  Case:   External  Sharing   •  External  sharing   –  Share  medical  images   –  Send  medical  bills   –  Send  receipts  to  suppliers   •  Send  big  files   –  CT  Scans,  X-­‐Rays  
The  Dark  Side  of  the  Cloud   •  If  all  my  office  files  are   synchronized   everywhere…   •  The  loss  of  a  laptop  or   smartphone  causes  a   HIPAA  breach!  
HIPAA  Breaches  AffecLng  500+   Records  2006-­‐2013  [Source:  HHS]   4.92%   1.31%   Portable  Media   Network  Server   9.43%   46.01%   12.31%   12.96%   Computer   Laptop   EMR   Paper   13.04%   E-­‐mail  
HIPAA  Breaches  AffecLng  500+   Records  2006-­‐2013  [Source:  HHS]   4.92%   1.31%   Portable  Media   Network  Server   9.43%   46.01%   12.31%   12.96%   Computer   Laptop   EMR   Paper   13.04%   E-­‐mail   Most  breaches:  lost/stolen  devices  
The  Most  Common  HIPAA  Breaches   •  Lost  and  stolen  devices  and  portable  media   –  Over  1,000,000  devices  lost  every  week!   –  22%  of  employees  report  they  have  lost  a  phone   during  2012   •  Employees  inappropriately  accessing,  using,  or   transmidng  PHI  
Case  Study:  Stanford  Hospital   06/2013  Stolen  laptop:  13,000  paLents   01/2013  Stolen  laptop:  57,000  paLents   07/2012  Stolen  laptop:  2,500  paLents   09/2011  Accidental  online  sharing:  20,000  paLents   01/2010  Stolen  laptop:  500  paLents  
Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI  
Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?  
Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  by  BAA  
Top  HIPAA  File  Sharing  Risks   Not  Solved  by  BAA   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  by  BAA  
Dropbox   Signed  BAA   On-­‐device  EncrypLon   Prevent  Accidental   Sharing   Access  Control  for  On-­‐ device  Data   End  User  Experience   and  Sync   Popularity   (Network  Effect)   Box   Google  Drive  
Ingredients  of  File  Sharing  HIPAA  Compliance   1.  File  encrypLon  on  the  device   2.  Control  access  to  files  with  white   list   –  People   –  Devices   3.  Audit  trail  and  emergency  access  
The  SoluLon   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  
Sookasa:  Shameless  Plug   Dropbox   Signed  BAA   On-­‐device   EncrypLon   Prevent  Accidental   Sharing   Access  Control  for   On-­‐device  Data   End  User   Experience  and   Sync   Popularity   (Network  Effect)   Box   Google  Drive   Sookasa  +   Dropbox  
ü  HIPAA  Compliance   ü  HITECH  Attestation   ü  Risk  Assessment   ü  Omnibus  Rule  Ready   ü  Meaningful  Use  core  measure  15   Free  Demo  and  60  Day  Evaluation   www.compliancy-­‐group.com     HIPAA  Hotline       855.85HIPAA   855.854.4722  

Recommended

The Basics: Reviewing & Producing ESI Evidence
The Basics: Reviewing & Producing ESI EvidenceThe Basics: Reviewing & Producing ESI Evidence
The Basics: Reviewing & Producing ESI EvidenceAaron Vick
 
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28TechSoup
 
Umphrey hutcherson-ecu-cause2010-rev5
Umphrey hutcherson-ecu-cause2010-rev5Umphrey hutcherson-ecu-cause2010-rev5
Umphrey hutcherson-ecu-cause2010-rev5umphreym
 
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010TechSoup for Libraries
 
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...Gladysmorayma Creamer Berrios
 
Squash Those IoT Security Bugs with a Hardened System Profile
Squash Those IoT Security Bugs with a Hardened System ProfileSquash Those IoT Security Bugs with a Hardened System Profile
Squash Those IoT Security Bugs with a Hardened System ProfileSteve Arnold
 
HIPAA Compliance in the Cloud
HIPAA Compliance in the CloudHIPAA Compliance in the Cloud
HIPAA Compliance in the CloudDataWorks Summit/Hadoop Summit
 
Internet of Things & Hardware Industry Report 2016
Internet of Things & Hardware Industry Report 2016Internet of Things & Hardware Industry Report 2016
Internet of Things & Hardware Industry Report 2016Bernard Moon
 

Recommended

The Basics: Reviewing & Producing ESI Evidence
The Basics: Reviewing & Producing ESI EvidenceThe Basics: Reviewing & Producing ESI Evidence
The Basics: Reviewing & Producing ESI EvidenceAaron Vick
 
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28
Webinar - Maximize Your Technology Donations Through TechSoup - 2017-03-28TechSoup
 
Umphrey hutcherson-ecu-cause2010-rev5
Umphrey hutcherson-ecu-cause2010-rev5Umphrey hutcherson-ecu-cause2010-rev5
Umphrey hutcherson-ecu-cause2010-rev5umphreym
 
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010
TechSoup for Libraries: Sustaining Technology to Serve Your Patrons: Dec. 2010TechSoup for Libraries
 
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...
LECTIO DIVINA DOMINICAL VI DE PASCUA ! QUIEN ME AMA GUARDARA MIS MANDAMIENTOS...Gladysmorayma Creamer Berrios
 
Squash Those IoT Security Bugs with a Hardened System Profile
Squash Those IoT Security Bugs with a Hardened System ProfileSquash Those IoT Security Bugs with a Hardened System Profile
Squash Those IoT Security Bugs with a Hardened System ProfileSteve Arnold
 
HIPAA Compliance in the Cloud
HIPAA Compliance in the CloudHIPAA Compliance in the Cloud
HIPAA Compliance in the CloudDataWorks Summit/Hadoop Summit
 
Internet of Things & Hardware Industry Report 2016
Internet of Things & Hardware Industry Report 2016Internet of Things & Hardware Industry Report 2016
Internet of Things & Hardware Industry Report 2016Bernard Moon
 
Disaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their TechDisaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their TechTechSoup
 
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOWLENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOWGuus van den Brekel
 
Remote Workers
Remote WorkersRemote Workers
Remote WorkersMarieke Guy
 
3G HIT
3G HIT3G HIT
3G HITJack Shaffer
 
Behind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs DemystifiedBehind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs DemystifiedSonnet Ireland
 
Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO Mirjam-Mona
 
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel Incisive_Events
 
Practical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR LibraryPractical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR LibraryUniversity of Missouri
 
Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18TechSoup
 
UWA Research Week 2016
UWA Research Week 2016UWA Research Week 2016
UWA Research Week 2016Katina Toufexis
 
Ciso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data ExposedCiso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data ExposedElastica Inc.
 
Briefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data ApproachBriefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data Approach3 Round Stones
 
The Future of Work
The Future of WorkThe Future of Work
The Future of WorkArgyle Executive Forum
 
Information Management - Data Processing
Information Management - Data ProcessingInformation Management - Data Processing
Information Management - Data ProcessingGisli Olafsson
 
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...Dr. Haxel Consult
 
Enabling Dropbox for Business
Enabling Dropbox for BusinessEnabling Dropbox for Business
Enabling Dropbox for BusinessElastica Inc.
 
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...Andris Soroka
 
Embracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG SecurityEmbracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG SecurityBarry Caplin
 
TheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptxTheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptxHAYDEECAYDA
 
To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security Inside Analysis
 
HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...Compliancy Group
 
HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016Compliancy Group
 

More Related Content

Similar to Maintaining HIPAA Compliance with Cloud Based Solutions

Disaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their TechDisaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their TechTechSoup
 
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOWLENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOWGuus van den Brekel
 
Behind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs DemystifiedBehind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs DemystifiedSonnet Ireland
 
Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO Mirjam-Mona
 
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel Incisive_Events
 
Practical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR LibraryPractical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR LibraryUniversity of Missouri
 
Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18TechSoup
 
Ciso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data ExposedCiso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data ExposedElastica Inc.
 
Briefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data ApproachBriefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data Approach3 Round Stones
 
Information Management - Data Processing
Information Management - Data ProcessingInformation Management - Data Processing
Information Management - Data ProcessingGisli Olafsson
 
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...Dr. Haxel Consult
 
Enabling Dropbox for Business
Enabling Dropbox for BusinessEnabling Dropbox for Business
Enabling Dropbox for BusinessElastica Inc.
 
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...Andris Soroka
 
Embracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG SecurityEmbracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG SecurityBarry Caplin
 
TheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptxTheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptxHAYDEECAYDA
 
To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security Inside Analysis
 

Similar to Maintaining HIPAA Compliance with Cloud Based Solutions (20)

Disaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their TechDisaster Planning What Organizations Need To Know To Protect Their Tech
Disaster Planning What Organizations Need To Know To Protect Their Tech
 
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOWLENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
LENDING IPADS TO MEDICAL STAFF: INTEGRATING IN INFORMATION WORKFLOW
 
Remote Workers
Remote WorkersRemote Workers
Remote Workers
 
3G HIT
3G HIT3G HIT
3G HIT
 
Behind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs DemystifiedBehind the Cloud: Cloud Computing Programs Demystified
Behind the Cloud: Cloud Computing Programs Demystified
 
Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO Delay Tolerant Disaster Communication with the One Laptop Per Child XO
Delay Tolerant Disaster Communication with the One Laptop Per Child XO
 
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
Lending Ipads to Medical Staff; Tablets in the Workplace – Guus Van Den Brekel
 
Practical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR LibraryPractical Approaches to Cloud Computing at YOUR Library
Practical Approaches to Cloud Computing at YOUR Library
 
Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18Webinar: Is the Cloud Right for You 2016-10-18
Webinar: Is the Cloud Right for You 2016-10-18
 
UWA Research Week 2016
UWA Research Week 2016UWA Research Week 2016
UWA Research Week 2016
 
Ciso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data ExposedCiso Platform Webcast: Shadow Data Exposed
Ciso Platform Webcast: Shadow Data Exposed
 
Briefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data ApproachBriefing on US EPA Open Data Strategy using a Linked Data Approach
Briefing on US EPA Open Data Strategy using a Linked Data Approach
 
The Future of Work
The Future of WorkThe Future of Work
The Future of Work
 
Information Management - Data Processing
Information Management - Data ProcessingInformation Management - Data Processing
Information Management - Data Processing
 
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
II-SDV 2014 Standing on the Shoulders of Giants: New strategies to involve mo...
 
Enabling Dropbox for Business
Enabling Dropbox for BusinessEnabling Dropbox for Business
Enabling Dropbox for Business
 
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
DSS ITSEC 2013 Conference 07.11.2013 - Accellion - The Secure File-Sharing P...
 
Embracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG SecurityEmbracing the IT Consumerization Imperative NG Security
Embracing the IT Consumerization Imperative NG Security
 
TheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptxTheInternetDigitalSecurityfddreeere.pptx
TheInternetDigitalSecurityfddreeere.pptx
 
To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security To Serve and Protect: Making Sense of Hadoop Security
To Serve and Protect: Making Sense of Hadoop Security
 

More from Compliancy Group

HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...Compliancy Group
 
HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016Compliancy Group
 
How to safeguard ePHIi in the cloud
How to safeguard ePHIi in the cloud How to safeguard ePHIi in the cloud
How to safeguard ePHIi in the cloud Compliancy Group
 
Business Associates: How to differentiate your organization using HIPAA compl...
Business Associates: How to differentiate your organization using HIPAA compl...Business Associates: How to differentiate your organization using HIPAA compl...
Business Associates: How to differentiate your organization using HIPAA compl...Compliancy Group
 
Business Associates: How to become HIPAA compliant, increase revenue, and gai...
Business Associates: How to become HIPAA compliant, increase revenue, and gai...Business Associates: How to become HIPAA compliant, increase revenue, and gai...
Business Associates: How to become HIPAA compliant, increase revenue, and gai...Compliancy Group
 
HIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowHIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowCompliancy Group
 
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...Compliancy Group
 
How to prepare for OCR's upcoming phase 2 audits
How to prepare for OCR's upcoming phase 2 auditsHow to prepare for OCR's upcoming phase 2 audits
How to prepare for OCR's upcoming phase 2 auditsCompliancy Group
 
Preparing for the unexpected in your medical practice
Preparing for the unexpected in your medical practicePreparing for the unexpected in your medical practice
Preparing for the unexpected in your medical practiceCompliancy Group
 
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...Compliancy Group
 
How to Survive a HIPAA Audit
How to Survive a HIPAA AuditHow to Survive a HIPAA Audit
How to Survive a HIPAA AuditCompliancy Group
 
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...How to Effectively Negotiate a Business Associate Agreement: What’s Importan...
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...Compliancy Group
 
How to Increase Your Profits Using Patient Payments on File, Recurring and On...
How to Increase Your Profits Using Patient Payments on File, Recurring and On...How to Increase Your Profits Using Patient Payments on File, Recurring and On...
How to Increase Your Profits Using Patient Payments on File, Recurring and On...Compliancy Group
 
Why a Risk Assessment is NOT Enough for HIPAA Compliance
Why a Risk Assessment is NOT Enough for HIPAA ComplianceWhy a Risk Assessment is NOT Enough for HIPAA Compliance
Why a Risk Assessment is NOT Enough for HIPAA ComplianceCompliancy Group
 
The must have tools to address your HIPAA compliance challenge
The must have tools to address your HIPAA compliance challengeThe must have tools to address your HIPAA compliance challenge
The must have tools to address your HIPAA compliance challengeCompliancy Group
 
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINED
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINEDHIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINED
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINEDCompliancy Group
 
What you need to know about Meaningful Use 2 & interoperability
What you need to know about Meaningful Use 2 & interoperabilityWhat you need to know about Meaningful Use 2 & interoperability
What you need to know about Meaningful Use 2 & interoperabilityCompliancy Group
 
Just the Facts- Meaningful Use Stage 2 & ICD 10
Just the Facts- Meaningful Use Stage 2 & ICD 10Just the Facts- Meaningful Use Stage 2 & ICD 10
Just the Facts- Meaningful Use Stage 2 & ICD 10Compliancy Group
 
Is Your EHR Safe? New Technologies for Auditing
Is Your EHR Safe? New Technologies for AuditingIs Your EHR Safe? New Technologies for Auditing
Is Your EHR Safe? New Technologies for AuditingCompliancy Group
 

More from Compliancy Group (20)

HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...HIPAA compliance for Business Associates- The value of compliance, how to acq...
HIPAA compliance for Business Associates- The value of compliance, how to acq...
 
HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016HIPAA compliance tuneup 2016
HIPAA compliance tuneup 2016
 
How to safeguard ePHIi in the cloud
How to safeguard ePHIi in the cloud How to safeguard ePHIi in the cloud
How to safeguard ePHIi in the cloud
 
Business Associates: How to differentiate your organization using HIPAA compl...
Business Associates: How to differentiate your organization using HIPAA compl...Business Associates: How to differentiate your organization using HIPAA compl...
Business Associates: How to differentiate your organization using HIPAA compl...
 
Business Associates: How to become HIPAA compliant, increase revenue, and gai...
Business Associates: How to become HIPAA compliant, increase revenue, and gai...Business Associates: How to become HIPAA compliant, increase revenue, and gai...
Business Associates: How to become HIPAA compliant, increase revenue, and gai...
 
HIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to knowHIPAA 101- What all Doctors NEED to know
HIPAA 101- What all Doctors NEED to know
 
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...
HIPAA Compliance and Non-Business Associate Vendors - Strategies and Best Pra...
 
How to prepare for OCR's upcoming phase 2 audits
How to prepare for OCR's upcoming phase 2 auditsHow to prepare for OCR's upcoming phase 2 audits
How to prepare for OCR's upcoming phase 2 audits
 
Preparing for the unexpected in your medical practice
Preparing for the unexpected in your medical practicePreparing for the unexpected in your medical practice
Preparing for the unexpected in your medical practice
 
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...
HIPAA Compliance and Electronic Protected Health Information: Ignorance is no...
 
How to Survive a HIPAA Audit
How to Survive a HIPAA AuditHow to Survive a HIPAA Audit
How to Survive a HIPAA Audit
 
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...How to Effectively Negotiate a Business Associate Agreement: What’s Importan...
How to Effectively Negotiate a Business Associate Agreement: What’s Importan...
 
Meaningful Use vs HIPAA
Meaningful Use vs HIPAAMeaningful Use vs HIPAA
Meaningful Use vs HIPAA
 
How to Increase Your Profits Using Patient Payments on File, Recurring and On...
How to Increase Your Profits Using Patient Payments on File, Recurring and On...How to Increase Your Profits Using Patient Payments on File, Recurring and On...
How to Increase Your Profits Using Patient Payments on File, Recurring and On...
 
Why a Risk Assessment is NOT Enough for HIPAA Compliance
Why a Risk Assessment is NOT Enough for HIPAA ComplianceWhy a Risk Assessment is NOT Enough for HIPAA Compliance
Why a Risk Assessment is NOT Enough for HIPAA Compliance
 
The must have tools to address your HIPAA compliance challenge
The must have tools to address your HIPAA compliance challengeThe must have tools to address your HIPAA compliance challenge
The must have tools to address your HIPAA compliance challenge
 
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINED
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINEDHIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINED
HIPAA MYTHS: HOW MUCH DO YOU KNOW? COMMON MYTHS DEBUNKED & EXPLAINED
 
What you need to know about Meaningful Use 2 & interoperability
What you need to know about Meaningful Use 2 & interoperabilityWhat you need to know about Meaningful Use 2 & interoperability
What you need to know about Meaningful Use 2 & interoperability
 
Just the Facts- Meaningful Use Stage 2 & ICD 10
Just the Facts- Meaningful Use Stage 2 & ICD 10Just the Facts- Meaningful Use Stage 2 & ICD 10
Just the Facts- Meaningful Use Stage 2 & ICD 10
 
Is Your EHR Safe? New Technologies for Auditing
Is Your EHR Safe? New Technologies for AuditingIs Your EHR Safe? New Technologies for Auditing
Is Your EHR Safe? New Technologies for Auditing
 

Recently uploaded

History and Development of Pharmacovigilence.pdf
History and Development of Pharmacovigilence.pdfHistory and Development of Pharmacovigilence.pdf
History and Development of Pharmacovigilence.pdfSasikiranMarri
 
97111 47426 Call Girls In Delhi MUNIRKAA
97111 47426 Call Girls In Delhi MUNIRKAA97111 47426 Call Girls In Delhi MUNIRKAA
97111 47426 Call Girls In Delhi MUNIRKAAjennyeacort
 
The next social challenge to public health: the information environment.pptx
The next social challenge to public health: the information environment.pptxThe next social challenge to public health: the information environment.pptx
The next social challenge to public health: the information environment.pptxTina Purnat
 
Basic principles involved in the traditional systems of medicine PDF.pdf
Basic principles involved in the traditional systems of medicine PDF.pdfBasic principles involved in the traditional systems of medicine PDF.pdf
Basic principles involved in the traditional systems of medicine PDF.pdfDivya Kanojiya
 
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...Wessex Health Partners
 
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaur
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaurMETHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaur
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaurNavdeep Kaur
 
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptx
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptxPERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptx
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptxdrashraf369
 
Presentation on Parasympathetic Nervous System
Presentation on Parasympathetic Nervous SystemPresentation on Parasympathetic Nervous System
Presentation on Parasympathetic Nervous SystemPrerana Jadhav
 
Giftedness: Understanding Everyday Neurobiology for Self-Knowledge
Giftedness: Understanding Everyday Neurobiology for Self-KnowledgeGiftedness: Understanding Everyday Neurobiology for Self-Knowledge
Giftedness: Understanding Everyday Neurobiology for Self-Knowledgeassessoriafabianodea
 
world health day presentation ppt download
world health day presentation ppt downloadworld health day presentation ppt download
world health day presentation ppt downloadAnkitKumar311566
 
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand University
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand UniversityCEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand University
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand UniversityHarshChauhan475104
 
Informed Consent Empowering Healthcare Decision-Making.pptx
Informed Consent Empowering Healthcare Decision-Making.pptxInformed Consent Empowering Healthcare Decision-Making.pptx
Informed Consent Empowering Healthcare Decision-Making.pptxSasikiranMarri
 
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptx
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptxCOVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptx
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptxBibekananda shah
 
Clinical Pharmacotherapy of Scabies Disease
Clinical Pharmacotherapy of Scabies DiseaseClinical Pharmacotherapy of Scabies Disease
Clinical Pharmacotherapy of Scabies DiseaseSreenivasa Reddy Thalla
 
SWD (Short wave diathermy)- Physiotherapy.ppt
SWD (Short wave diathermy)- Physiotherapy.pptSWD (Short wave diathermy)- Physiotherapy.ppt
SWD (Short wave diathermy)- Physiotherapy.pptMumux Mirani
 
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATRO
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATROApril 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATRO
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATROKanhu Charan
 
Statistical modeling in pharmaceutical research and development.
Statistical modeling in pharmaceutical research and development.Statistical modeling in pharmaceutical research and development.
Statistical modeling in pharmaceutical research and development.ANJALI
 
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdf
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdfPULMONARY EMBOLISM AND ITS MANAGEMENTS.pdf
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdfDolisha Warbi
 
systemic bacteriology (7)............pptx
systemic bacteriology (7)............pptxsystemic bacteriology (7)............pptx
systemic bacteriology (7)............pptxEyobAlemu11
 
PULMONARY EDEMA AND ITS MANAGEMENT.pdf
PULMONARY EDEMA AND ITS MANAGEMENT.pdfPULMONARY EDEMA AND ITS MANAGEMENT.pdf
PULMONARY EDEMA AND ITS MANAGEMENT.pdfDolisha Warbi
 

Recently uploaded (20)

History and Development of Pharmacovigilence.pdf
History and Development of Pharmacovigilence.pdfHistory and Development of Pharmacovigilence.pdf
History and Development of Pharmacovigilence.pdf
 
97111 47426 Call Girls In Delhi MUNIRKAA
97111 47426 Call Girls In Delhi MUNIRKAA97111 47426 Call Girls In Delhi MUNIRKAA
97111 47426 Call Girls In Delhi MUNIRKAA
 
The next social challenge to public health: the information environment.pptx
The next social challenge to public health: the information environment.pptxThe next social challenge to public health: the information environment.pptx
The next social challenge to public health: the information environment.pptx
 
Basic principles involved in the traditional systems of medicine PDF.pdf
Basic principles involved in the traditional systems of medicine PDF.pdfBasic principles involved in the traditional systems of medicine PDF.pdf
Basic principles involved in the traditional systems of medicine PDF.pdf
 
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...
Wessex Health Partners Wessex Integrated Care, Population Health, Research & ...
 
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaur
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaurMETHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaur
METHODS OF ACQUIRING KNOWLEDGE IN NURSING.pptx by navdeep kaur
 
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptx
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptxPERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptx
PERFECT BUT PAINFUL TKR -ROLE OF SYNOVECTOMY.pptx
 
Presentation on Parasympathetic Nervous System
Presentation on Parasympathetic Nervous SystemPresentation on Parasympathetic Nervous System
Presentation on Parasympathetic Nervous System
 
Giftedness: Understanding Everyday Neurobiology for Self-Knowledge
Giftedness: Understanding Everyday Neurobiology for Self-KnowledgeGiftedness: Understanding Everyday Neurobiology for Self-Knowledge
Giftedness: Understanding Everyday Neurobiology for Self-Knowledge
 
world health day presentation ppt download
world health day presentation ppt downloadworld health day presentation ppt download
world health day presentation ppt download
 
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand University
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand UniversityCEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand University
CEHPALOSPORINS.pptx By Harshvardhan Dev Bhoomi Uttarakhand University
 
Informed Consent Empowering Healthcare Decision-Making.pptx
Informed Consent Empowering Healthcare Decision-Making.pptxInformed Consent Empowering Healthcare Decision-Making.pptx
Informed Consent Empowering Healthcare Decision-Making.pptx
 
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptx
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptxCOVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptx
COVID-19 (NOVEL CORONA VIRUS DISEASE PANDEMIC ).pptx
 
Clinical Pharmacotherapy of Scabies Disease
Clinical Pharmacotherapy of Scabies DiseaseClinical Pharmacotherapy of Scabies Disease
Clinical Pharmacotherapy of Scabies Disease
 
SWD (Short wave diathermy)- Physiotherapy.ppt
SWD (Short wave diathermy)- Physiotherapy.pptSWD (Short wave diathermy)- Physiotherapy.ppt
SWD (Short wave diathermy)- Physiotherapy.ppt
 
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATRO
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATROApril 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATRO
April 2024 ONCOLOGY CARTOON by DR KANHU CHARAN PATRO
 
Statistical modeling in pharmaceutical research and development.
Statistical modeling in pharmaceutical research and development.Statistical modeling in pharmaceutical research and development.
Statistical modeling in pharmaceutical research and development.
 
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdf
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdfPULMONARY EMBOLISM AND ITS MANAGEMENTS.pdf
PULMONARY EMBOLISM AND ITS MANAGEMENTS.pdf
 
systemic bacteriology (7)............pptx
systemic bacteriology (7)............pptxsystemic bacteriology (7)............pptx
systemic bacteriology (7)............pptx
 
PULMONARY EDEMA AND ITS MANAGEMENT.pdf
PULMONARY EDEMA AND ITS MANAGEMENT.pdfPULMONARY EDEMA AND ITS MANAGEMENT.pdf
PULMONARY EDEMA AND ITS MANAGEMENT.pdf
 

Maintaining HIPAA Compliance with Cloud Based Solutions

  • 1. Industry  leading  Education   Certified  Partner  Program     •  Please  ask  questions   •  For  todays  Slides   http://compliancy-­‐group.com/slides023/   •  Todays  &  Past  webinars  go  to:   http://compliancy-­‐group.com/webinar/     855.85HIPAA   www.compliancygroup.com  
  • 2. Maintaining  HIPAA  Compliance:   Cloud  File  Sharing  and  Mobile  Devices   Asaf  Cidon   CEO,  Sookasa  
  • 3. Cloud  File  Sharing  is  Booming   Dropbox   200M  Users   Google  Drive   120M  Users   Box   20M  Users  
  • 4. Healthcare  Use  Case:   Sync  and  Backup   •  Sync  and  backup   –  TranscripLons   –  PaLent  charts   –  Medical  bills   •  Low  cost  alternaLve   –  $100-­‐200  per  seat  
  • 5. Healthcare  Use  Case:   Mobile  Access   •  Mobile  access   –  Access  paLent  charts  on-­‐the-­‐go   –  Work  from  home   –  Home  care  
  • 6. Healthcare  Use  Case:   External  Sharing   •  External  sharing   –  Share  medical  images   –  Send  medical  bills   –  Send  receipts  to  suppliers   •  Send  big  files   –  CT  Scans,  X-­‐Rays  
  • 7. The  Dark  Side  of  the  Cloud   •  If  all  my  office  files  are   synchronized   everywhere…   •  The  loss  of  a  laptop  or   smartphone  causes  a   HIPAA  breach!  
  • 8. HIPAA  Breaches  AffecLng  500+   Records  2006-­‐2013  [Source:  HHS]   4.92%   1.31%   Portable  Media   Network  Server   9.43%   46.01%   12.31%   12.96%   Computer   Laptop   EMR   Paper   13.04%   E-­‐mail  
  • 9. HIPAA  Breaches  AffecLng  500+   Records  2006-­‐2013  [Source:  HHS]   4.92%   1.31%   Portable  Media   Network  Server   9.43%   46.01%   12.31%   12.96%   Computer   Laptop   EMR   Paper   13.04%   E-­‐mail   Most  breaches:  lost/stolen  devices  
  • 10. The  Most  Common  HIPAA  Breaches   •  Lost  and  stolen  devices  and  portable  media   –  Over  1,000,000  devices  lost  every  week!   –  22%  of  employees  report  they  have  lost  a  phone   during  2012   •  Employees  inappropriately  accessing,  using,  or   transmidng  PHI  
  • 11. Case  Study:  Stanford  Hospital   06/2013  Stolen  laptop:  13,000  paLents   01/2013  Stolen  laptop:  57,000  paLents   07/2012  Stolen  laptop:  2,500  paLents   09/2011  Accidental  online  sharing:  20,000  paLents   01/2010  Stolen  laptop:  500  paLents  
  • 12. Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI  
  • 13. Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?  
  • 14. Top  HIPAA  File  Sharing  Risks   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  by  BAA  
  • 15. Top  HIPAA  File  Sharing  Risks   Not  Solved  by  BAA   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  by  BAA  
  • 16. Dropbox   Signed  BAA   On-­‐device  EncrypLon   Prevent  Accidental   Sharing   Access  Control  for  On-­‐ device  Data   End  User  Experience   and  Sync   Popularity   (Network  Effect)   Box   Google  Drive  
  • 17. Ingredients  of  File  Sharing  HIPAA  Compliance   1.  File  encrypLon  on  the  device   2.  Control  access  to  files  with  white   list   –  People   –  Devices   3.  Audit  trail  and  emergency  access  
  • 18. The  SoluLon   1.  Device  Loss  with  Unencrypted  PHI   2.  Accidental  Sharing  of  PHI   3.  Unencrypted  PHI  on  Cloud?   Solved  
  • 19. Sookasa:  Shameless  Plug   Dropbox   Signed  BAA   On-­‐device   EncrypLon   Prevent  Accidental   Sharing   Access  Control  for   On-­‐device  Data   End  User   Experience  and   Sync   Popularity   (Network  Effect)   Box   Google  Drive   Sookasa  +   Dropbox  
  • 20. ü  HIPAA  Compliance   ü  HITECH  Attestation   ü  Risk  Assessment   ü  Omnibus  Rule  Ready   ü  Meaningful  Use  core  measure  15   Free  Demo  and  60  Day  Evaluation   www.compliancy-­‐group.com     HIPAA  Hotline       855.85HIPAA   855.854.4722