WebPathLab Complies with HIPAA
What are the HIPAA requirements
Secure Server Location: Data is located at a HIPAA compliant data center protected from theft, fire, power outages, natural disasters, etc.
Data is Always Secure: Data is encrypted using 128 bit encryption. The instant that information leaves the server it is encrypted and it remains so until it arrives at the customer’s computer where it is un-encrypted.
Disaster Recovery: Hurricanes, Harvey, Katrina, and others is an example of how a Web-Based solution is the best method to keep data safe after a natural disaster. Those with Web-Based solutions were able to recover as soon as they had access back to their labs. Many with in-house solutions lost data permanently.
Reliability: The data center has redundant access to the back bone of the internet, plus a large diesel generator to provide power in case of an electrical outage.
Multiple Access Levels: WebPathLab’s multiple levels of access allow only those with proper authorization to view critical patient information. Restricted access is in place for those doing quick accessioning, grossing, etc.
HIPAA is part of the TITLE 45 of the Code of Federal Regulations (45 CFR) sections 160, 162 and 164 as published by the US Department of Health and Human Services.
To view an electronic copy of the Code of Federal Regulations, Title 45 – Public Welfare; sections 160, 162 and 164 click this link. This website is provided by the National Archives and Records Administration.
Key sections are:
Issues of special interest to the US Dept. of Human Health and Services are recovery of data under a disaster recovery plan, protection of data from theft, or unauthorized use, and security policies and procedures.
The following publication is HIPAA 101 for Health Care Providers and it was published by the US Dept of Health and Human Services. Another publication is Fax and Email Standards, and it was published by the College of American Pathologists cap.org. (CAP)