HIPAA Compliance and Security
Your Safety is Our Prime ConcernThe key implications of The Health Insurance Portability and Accountability Act (HIPAA) mandates to protect the security and privacy of the patients’ confidential data by the healthcare organizations who are in possession of their confidential healthcare information in the form of ‘healthcare records.’ This impacted even the leading healthcare organizations to change their processes to a substantial degree to safeguard this confidential data from being misused in any manner whatsoever. It also laid down standardized formats for carrying out the day-to-day transactions between the healthcare organizations who are actively involved in delivering healthcare to the patients. |
 |
We Respect your Confidentiality – Safeguarding your Safety through Stringent Protocols
iScript firmly believes in delivering quality healthcare to the patients and managing their healthcare information in the safest possible manner. We follow strict adherence to the procedures and protocols as laid down by HIPAA to ensure compliance. Our technology upgrades are happening from time to time, and we have stringent protocols to audit, troubleshoot, upgrade, and verify security measures at all levels. Our team is well-educated about HIPAA policies and regulations and are committed to monitoring the security, privacy and confidentiality of patient health information.
Our Foolproof Protocols
- We have created an internal taskforce comprising of Compliance Auditors who perform regular health checks and help the management in effective decision making by their valuable insights for enforcing security measures that are strictly aligned with latest HIPAA guidelines.
- We ensure that all our associates are well-educated and up-to-date on HIPAA regulations by conducting quarterly Compliance Workshops imparting comprehensive training on security and privacy.
- After successful Compliance training, iScript provides yearly “HIPAA Compliant” certifications to all its associates who are the eventual stakeholders of confidential data.
- Our development team ensures compliance with HIPAA by administrating appropriate maintenance, and implementing both physical and technical safeguards to protect confidentiality and integrity of crucial healthcare data.
- Our Managers and Team Leads are instructed to keep a check on the use of paper, to ensure paper-free work environment and to use paper only judiciously.
- Our network engineers have disabled any additional drives or physical-dump locations on the network to ensure that no unnecessary copies are being created during the transcription process and nothing goes out from our office premises.
Data Encryption, Website Security, & Confidentiality Agreements
We are constantly striving hard to utilize best practices to ensure compliance, and currently, we are happy to acknowledge that we are thus far successful in meeting and even exceeding the HIPAA compliance standards.
- Data Encryption: We don’t send any reports on emails as it is strictly against HIPAA, and only in rare scenarios, any such transfer of confidential information is deemed to be strictly encrypted with a “fill-to-open password” that will be sent separately.
- Website Security: Our online website archives online patient records on a secure server which is encrypted with a 256-bit secure socket layer (SSL encryption) to prevent any unauthorized access to our system. We have provided all facilities, physicians, and staffs with unique combination of user names and passwords to authenticate access to the website.
- Confidentiality Agreements: All our transcriptionists and staff members are made to sign confidentiality agreements and have undergone extensive 15-day training on keeping up with HIPAA compliance procedures and methodologies, only after which they are allowed to enter and work inside the office premises.
