HIPAA Mobile DevicesYou’re Not HIPAA Compliant Unless Your Mobile Devices Are Properly Encrypted.

Advocate Health Care in Downers Grove, Illinois, experienced the second biggest HIPAA data breach ever when four of their unencrypted laptops were stolen. Electronic Personal Health Information (ePHI) for more than 4 million people was compromised. If these laptops had been properly encrypted, the thieves wouldn’t have been able to access the confidential information because it would have been protected.

With more healthcare practitioners and employees using mobile devices like smartphones, tablets and laptops, the risks for data breaches and HIPAA infractions are greater than ever. Mobile messaging apps aren’t HIPAA compliant. Because of this, all data on mobile devices must be encrypted using a robust algorithm such as an advanced encrypted standard.

The best way to protect your healthcare business is to schedule a Mobile Device HIPAA Audit.  This will determine the state of encryption for all your mobile devices. On Time Tech can conduct this for you.  For more information contact us at: (415) 294-5250 or info@ontimetech.com

In addition to encryption, the following are steps to take to ensure your mobile devices are HIPAA compliant.

Ensure Remote-Wipe Capabilities

Being able to wipe a mobile device remotely avoids security problems when an employee leaves the company, or a device is lost or stolen. Arrange for a Mobile Device Management solution to be implemented. On Time Tech can help.

Use Two-Level Security To Login To Enterprise Apps.

You should ensure each employee uses their healthcare organization login credentials to access apps. They should also use a separate PIN for access to mobile apps. Make sure that when the device is inactive, a disconnect time-out deploys. On Time Tech can set this up for you.

Update Security Software and Applications On All Mobile Devices.

Ensure security software on all mobile devices is updated regularly. The wireless carrier or manufacturer will typically send software updates. Ensure your entire staff installs these security software updates as soon as possible. On Time Tech can tell you more.

Only Use HIPAA-Compliant File-Sharing/Hosting Services

Cloud storage and file-sharing services, such as Evernote and Dropbox, aren’t HIPAA compliant. Don’t use these services for the transmission of ePHI. Ensure you employ HIPAA-compliant cloud file sharing. On Time Tech can provide you this information.

What To Do?

Contact On Time Tech at (415) 294-5250 or info@ontimetech.com.  We can perform a Mobile Device HIPAA Audit and ensure the steps above are followed. This could help you avoid costly fines for HIPAA noncompliance.

 

Author: Lance Stone, Date: 2014-05-23

On Time Tech is your One Click & Fixed San Francisco Managed IT Services & IT Support Company.

San Francisco IT Support from On Time Tech Allows You Optimum Business Growth

So, your current IT management – whether handled by in-house staff or an outsourced IT management compan[..]

Read More

We’ve Got the “One Click & Fixed” IT Solutions Your California Business Needs

These days, people are looking for convenience in computer support services that don’t waste their time [..]

Read More

The Benefits of Using IT Managed Services 

Discover the many benefits of partnering up with an IT Managed Service Provider. Today, many businesses a[..]

Read More