|
 |
 |
 |
 |
 |
|
|
| Server Security – The servers are kept in the data centre that has a high level of security. The physical servers are kept in a sub area of the data centre to which entry is allowed only to maintenance staff. The access control is thru’ swipe cards. All activities are logged and reviewed with 24 hours. Niha recognizes the importance of protecting the privacy and integrity of every patient’s health information. We follow the following Quality process to protect patient’s health information (PHI) Privacy - We recognize the importance of the Privacy and Security requirements under HIPAA. Therefore, we have taken several steps to ensure that PHI entrusted to us in the course of billing and related activities are fully protected in conformance with the letter and spirit of the regulations. Every employee signs a confidentiality agreement with severe penalties for HIPAA violations Access to applications/databases defined on ‘need-to-know’ and ‘minimum- necessary’ basis HIPAA compliant procedures defined in risk areas like: Fax and email communication to external agencies Information disclosure to payers, patients, family members and others Each user has unique login, power-on and screen saver passwords. Storage, retrieval and/or disposal of reports and physical records Common resources such as scanners and copier machines Back-to-back chain-of-trust agreements with our vendors such as security staff and housekeeping staff |
Designed by sninfotech