OSHA & HIPAA Compliance Made Easy
OSHA & HIPAA Compliance Made Easy
Smart Training
With 25+ years of OSHA experience and one of the nation's only Certified HIPAA Professionals, Smart Training makes compliance not only manageable but easy! We want to address your concerns, so comment and have your questions answered by the experts!

What Are HIPAA Physical Safeguards?

What Are HIPAA Physical Safeguards?

7/11/2018 9:29:48 AM   |   Comments: 0   |   Views: 10
Pin It
Under HIPAA, specific procedures and physical protection must safeguard office computers and related equipment from damage or theft.  About 1 in 5 Smart Training clients haven’t taken any action to secure their server from theft.  This is especially important because many popular operating software suites will not allow the office to encrypt server hard drives.  If the server is stolen and the drive is unencrypted, the office has sustained a serious data breach and substantial fines may follow.  The same penalties may apply to offices that sustain a ransomware attack.  Unless the office can prove a ‘low probability’ that patient data was actually accessed, the attack is considered a breach under HIPAA.

Quite often, system passwords haven’t been changed in several years, meaning that recently terminated employees may have shared active passwords with the rest of the local community.  The fact that former employees have signed an Employee Privacy Policy does not safeguard the practice from a disgruntled former employee sharing system login information with others who should not access patient data.

Workstation use and security are key concerns.  Workstations should be inaccessible to patients, and workstation screensavers frequently are set to a far longer interval than we advise.  In a dental office, for example, an assistant or hygienist might leave the room with a patient in the chair.  The patient then has the opportunity to access patient information on the office system.

The HIPAA Security Rule defines physical safeguards as “physical measures, policies and procedures to protect electronic information systems from natural and environmental hazards and unauthorized intrusion.”  Smart Training’s HIPAA Risk Assessment process was designed specifically to provide a birds’ eye view of physical safeguards and procedures already in place.

Get your HIPAA Risk Assessment Now!
Pin It
More Like This

Total Blog Activity

623
Total Bloggers
8,603
Total Blog Posts
2,398
Total Podcasts
1,104
Total Videos

Sponsors

Townie Perks

Townie® Poll

Do you use a digital caries detection device?
  

Site Help

Sally Gross, Member Services
Phone: +1-480-445-9710
Email: sally@farranmedia.com

Follow Dentaltown

Mobile App

WITH DENTALTOWN . . . NO DENTIST WILL EVER HAVE TO PRACTICE SOLO AGAIN®

WWW.DENTALTOWN.COM - WHERE THE DENTAL COMMUNITY LIVES®

9633 S. 48th Street Suite 200 • Phoenix, AZ 85044 · Phone: +1-480-598-0001 · Fax: +1-480-598-3450
©1999-2018 Dentaltown, L.L.C., a division of Farran Media, L.L.C. · All Rights Reserved