HIPAA (Health Insurance Portability and Accountability Act) mandates that healthcare providers and health plans protect the privacy of patient records.
Our facility is HIPAA compliant. We have the policies and procedures in place to ensure that we adhere to the guidelines of HIPAA.
Physical Safeguards Policy
1.
Maintaining a record of the movements of persons in a movement-record-register.
2.
Encryption of the backup data.
3.
Electronic PHI (ePHI) is stored in a restricted area.
4.
No loose pages, cell phones, camera phones allowed in workplace.
5.
Proper use of Internet and emails.
6.
Cleaning up of computers/disks for ePHI before disposal/transfer.
7.
Robust data back up plan.
8.
Periodic security updates.
Security Policy
1.
Preventive measures to stop unauthorized Access to ePHI.
a)
Using VPN Technology
b)
Separate Username and Password
c)
No password sharing
d)
Firewall security
e)
Data access control and validation procedures
2.
Session termination on computers by Automatic Lock Mechanism.
3.
Unique username and password management is ensured through Complex Password mechanism and termination procedures.
4.
Protection from malicious software by using latest anti virus software.
Compliance Training
1.
Training new and old employees periodically on HIPAA, company policies and procedures.
2.
Updating employees regularly on the memorandums received from Center of Medicare & Medicaid Services (CMS).
3.
Periodic training is imparted pertaining roles, responsibilities and specific job functions of each employee.
4.
Stringent policies against individuals violating the policies.
HIPAA Compliant Center 
HIPAA (Health Insurance Portability and Accountability Act) mandates that healthcare providers and health plans protect the privacy of patient records.