How to make your Mobile App HIPPA Compliant
Download as PPT, PDF1 like572 views
The document outlines the requirements for making a mobile app compliant with HIPAA, focusing on secure recording and transfer of patient data by doctors. It details the use of AES-128 CTR encryption for audio recordings, ensuring authentication, confidentiality, data integrity, and secure web services. Additionally, it describes features like secure data transfer, user authentication, and the ability for healthcare providers to analyze recorded interactions efficiently.
How to make your Mobile App HIPPA Compliant
- 1. www.letsnurture.com How to make Your Mobile App HIPPA Compliant
- 2. www.letsnurture.com HIPAA, the Health Insurance Portability and Accountability Act, sets the standard for protecting sensitive patient data.
- 3. www.letsnurture.com Mobile App and HIPPA Compliance Use Case: 1. Doctors to record conversation with Patient during their schedules visits using Mobile App on iPod Touch 2. Recording would be of high quality (24-bit/96khz audio quality) 3. Normal recording time would be 10 – 15 minutes 4. Upload audio recording immediately after recording 5. Upon successful upload remove audio file from iPod Touch. Requirement: As the App would be used by Doctors in USA it must comply to HIPPA standards.
- 4. www.letsnurture.com How to Make Data Communication Secure? In order to comply with HIPPA we are encrypting all the audio files getting recorded using the Mobile App with AES-128 CTR algorithm. We are using AES – 128 CTR it provides high level of data security and faster compare to other encryption techniques. We are using custom technique for encryption as we are managing file size that runs into few hundred Mbs. Once uploaded audio files would be analyzed for the quality of interaction done between doctor and patient.
- 5. www.letsnurture.com How We are providing End to End Secure Data transfer 1. Authentication 2. Confidentiality 3. Data Integrity 4. Secure Key Exchange between Client and Server
- 6. www.letsnurture.com Web Service Security Measures 1. We are using SSL to make web services secure and it helps us prevent attacks that can happen during data transfer. 2. App authenticate app users based on their profile data(name, specialty, department & facility) along with pass code provided. 3. App provides authorization based on identity of the App users (in this case Doctors) 4. After receiving 'Success' response from web service app removes last uploaded audio file from the App.
- 7. Additional Features This App is a white label solution for group of hospitals, health centers situated in USA. From Web Admin one can import Locations, Staff(Doctors and Medical Professionals) using CSV file. Recording of doctor's interaction with Patients transferred securely and available for analysis almost immediately. This light weight nimble solution can be used by any health care provider across the World.
- 8. To Make your App HIPPA Compliant Contact Now : info@letsnurture.com