HIPAA PHI Protection: Where is Your PHI Stored?
1 like430 views
The document highlights the importance of protecting protected health information (PHI) under HIPAA regulations, outlining various locations where PHI can be stored, including electronic systems and paper documents. It emphasizes the need for risk analysis, encryption, secure disposal, and vigilance to ensure PHI is not left exposed. Additionally, it suggests consulting experts to improve PHI protection measures.
HIPAA PHI Protection: Where is Your PHI Stored?
- 1. HIPAA PHI Protection Where is your PHI stored? On your computer. The cloud Remote servers MS database My Documents on network shares Other folders on hard drive Unencrypted images in other folders Development test environments 1 2 3 4 5 6 7 Walk around your office to check for PHI left in the open (e.g., sticky notes, computer screens) Start a risk analysis to identify your biggest vulnerabilities Make sure servers, back rooms, filing systems, offices, etc. are locked Encrypt PHI on all electronic systems Don’t leave PHI in your car or at your house Securely empty your computer trash Shred everything Protected health information (PHI) isn’t just stored in your Electronic Health Record system (EHR). It’s everywhere! HIPAA compliance law mandates that you protect PHI, in all its forms, wherever it resides. PHI is anything that identifies an individual used for healthcare purposes. Names Geographic subdivisions Dates related to an individual Phone numbers Fax numbers Email addresses Social Security Numbers Medical record numbers Health plan beneficiary numbers Account numbers Vehicle identifiers URLs IP address numbers Biometric identifiers Full face pictures URL Account Number Social Security # Hello. PatientX ? Email Shared network drives Recycle bin Excel documents Word documents Documents EHR Temporary browser cache files HHS.gov DocumentsPatient Records At the office. waterplant!! Trash bags in dumpsters Trash cans/ compactors Under desks Closets Back rooms Backup drives Sticky notes Desk drawers File rooms Old computers/servers no longer in use On shelves Charts Calendars 17 USB drives On your network. On the go. c://MS database c://entry01 c://entry02 c://entry03 c://entry04 At home Laptops Tablets Smartphones Carry on luggage Paper 48%say they would consider changing healthcare providers if their medical records were lost or stolen.* * Ponemon Medical ID Theft Study, 2015 7 Top 7 ways to start protecting all PHI consulting@securitymetrics.com 801.705.5656 © 2015 SecurityMetrics PHI is often stored... Talk to one of our consultants who can come onsite to help you find and protect all your PHI!