How to ensure your healthcare partner is serious about data security
By Bryan Paul, VP IT & Infrastructure / Information Security Officer
Is the issue of data security keeping you up at night? An important step to protecting your organization’s healthcare data is the selection of a healthcare partner that takes data security as seriously – if not more so than your team. At PatientMatters, patient data security is our top priority. It is critical our clients understand our firm commitment to security and trust in our ability to manage data with integrity and effectiveness.
Each year, PatientMatters engages the Electronic Healthcare Network Accreditation Commission (EHNAC) to conduct an IT controls and security risk analysis to ensure conformance with federal healthcare reform legislation including HIPAA, HITECH/ARRA, ACA, Omnibus Rule and other applicable state legislation.
EHNAC OSAP Full Accreditation
As in years past, PatientMatters has again achieved the EHNAC’s full accreditation with the Outsourced Services Accreditation Program (OSAP). The EHNAC concluded our process of managing and transferring protected health information met or exceeded all its criteria and industry standards. PatientMatters also demonstrated adherence to strict standards and participation in the comprehensive, objective evaluation of its business.
EHNAC Executive director Lee Barrett explains, “To be classified amongst the EHNAC OSAP-accredited organizations, PatientMatters has dedicated time and effort to meet a high standard in the areas of privacy, security and confidentiality of PHI as it relates to consent, authorization, authentication, access and audit procedures. As the outsourcing of various services continues to meet a need for healthcare organizations in an ecosystem with continuously changing mandates and regulations, it’s a vendor’s ability to securely handle protected health information (PHI) with integrity and effectiveness that continues to be a critical requirement for all associated business partners.”
The EHNAC’s OSAP accreditation recognizes excellence in health data processing and transactions, by not only evaluating compliance but also examining each security control and asking if any additional measures can be taken to bolster security relating to these outsourcing policies and procedures areas:
• Privacy and security
• Technical performance
• Business practices
• Organizational resources
When partnering with a healthcare vendor, it’s vital you select an organization that is passionate about data security. Take our advice and do your research. Evaluate both your current and potential vendor partners. Can they prove they have the expertise, technology, and know-how to ensure the security of your organization’s protected healthcare information? IT controls and security risk analysis
PatientMatters is proud to offer our client partners a simple, secure technical integration that delivers a seamless flow of data enabling front-end staff to effectively do their job and patients to get the care they need without worrying about the security of their personal information.