Security & HIPAA at Rising Solutions

No industry has higher standards for security than healthcare. That’s why Rising Solutions protects all patient data with the highest form of security possible. Our servers use the highest quality firewalls, providing greater security than a typical office server. All paper documents (if any are printed) are properly shredded, file transfer done through secure FTP, we have the technology to work through VPN if our clients prefer that, confidentiality and non-disclosure agreement signed with all employees, no devices like CD, pen drives or removable disks are allowed to be brought inside the office by the employees. We ensure that all our software or licensed. The antecedents of the employees are ensured through background checks

It is the policy of Rising that appropriate physical safeguards will be in place to reasonably safeguard protected health information from any intentional or unintentional use or disclosure that is in violation of the HIPAA Privacy Rule. These safeguards will include physical protection of premises and technical protection of PHI maintained electronically and administrative protection. These safeguards will extend to the oral communication of PHI. These safeguards will extend to PHI that is removed from this organization.

HIPAA Administrative Safeguards

Rising has implemented the following administrative procedures at their facilities to guard data integrity, confidentiality, and availability:

• Has implemented procedures for restricting use and disclosure of Protected Health Information (PHI) to the minimum amount necessary.
• All personnel are bound by PHI confidentiality and non-disclosure agreements
• The antecedents of the employees are ensured through background checks
• Termination Procedure is in place to prevent continued access to PHI by a terminated employee.
• Periodic information and security training are conducted

Rising has implemented the following administrative procedures at their facilities to guard data integrity, confidentiality, and availability:

• Rising has effective measures for its physical security, like round the clock manned security desk and digital smart card authenticated entry
• Duplicating facilities are disabled to ensure that no PHI is taken out of office
• Rising employees are trained on policies regarding use and disclosure of PHI.

Retention of Records

At Rising the HIPAA Privacy Rule records retention requirement will be strictly adhered to. All records designated by HIPAA in this retention requirement will be maintained in a manner that allows for access within a reasonable period of time. After the records retention time it will be destroyed as per the data destruction policy.

Mitigation

It is the policy of Rising that the effects of any unauthorized use or disclosure of protected health information be mitigated to the extent possible.