Direct Secure Messaging. Communicating in the Healthcare World Andy Nieto, Health IT Strategist, DataMotion

Size: px
Start display at page:

Download "Direct Secure Messaging. Communicating in the Healthcare World Andy Nieto, Health IT Strategist, DataMotion"

Transcription

1 Direct Secure Messaging Communicating in the Healthcare World Andy Nieto, Health IT Strategist, DataMotion

2 Agenda and Direct in healthcare, a little history So what is Direct, really Certificates PKI Two forms of Direct Provider to provider Provider to patient Controls in place Direct ecosystem Integrating with Direct A look forward 2

3 Evolution of healthcare IT 2001 EHR system usage at 18% 1996 HIPAA 2003 HIPAA Security Rule Feb 2009 HITECH - ARRA 2011 Meaningful Use Stage 1 attestation begins Jan 2013 Final HIPAA Omnibus ruling 1972 First EHR Introduced 2013 Meaningful Use 2 Rules included Direct 1971 first sent 2014 attestation for Meaningful Use 2 begins 3

4 in healthcare The Privacy Rule allows covered health care providers to communicate electronically, such as through , with their patients, provided they apply reasonable safeguards when doing so (http://www.hhs.gov/ocr/privacy/hipaa/faq/health_information_technology)

5 2013 refinement of HIPAA Privacy concerns Security concerns BAA who is liable 5

6 Looks like , acts like but ONLY for healthcare You may end up with multiple Direct addresses. 6

7 So what s the difference: Standard versus Direct Standard Direct Standard message protocol Standard message protocol Internet delivery Internet delivery Identity validation Secure encryption End-to-end trust & liability 7

8 What is Direct Secure Messaging EHR System Identity Validation Sender Mobile Device Secure Messages & Files Sending HISP Direct (SMTP/SMIME) Receiving HISP Recipient 8

9 The KEY - X.509 Digital Certificate Registration Authority (RA) confirms identity Certificate Authority (CA) issues certificate Healthcare Information Service Provider (HISP) manages certificate 9

10 What is PKI or public key infrastructure Let s say your safe deposit box is the information to be encrypted. Public key (bank s key to safe deposit box) Private key (your key to safe deposit box) Both are required to open and close the box, allowing you to see what is inside.

11 PKI with Direct Sender and receiver trust validated (identity confirmed with certificate) Message encrypted with receiver's public key Encrypted message sent via Internet to recipient Receiver s private key used to decrypt

12 2 types of Direct Provider to Provider Provider to Patient 12

13 Between providers identity validation encryption EHR EHR (Has been identity vetted, has X.509 Digital certificate bound to address.) (Has been identity vetted, has X.509 Digital certificate bound to address.) 13

14 Between provider and patient via PHR or portal identity validation encryption EHR PHR (Has been identity vetted, has X.509 Digital certificate bound to address.) (Has been identity vetted, has X.509 Digital certificate bound to address.) 14

15 Blue Button health record retrieval system Blue Button, the slogan, Download My Data the Blue Button Logo, and the Blue Button Combined Logo are registered Service Marks of the U.S. Department of Health and Human Services 15

16 Who is in charge 16

17 ONC s view of Direct 17

18 Focus view Integration HISP 18

19 Integration pathways for Direct XD* interface Typically to an EHR or HIE Not directly to a user client POP & SMTP Web portal HTTPS:// Web service Typically APIs to an EHR or HIE Not directly to a user 19

20 Is there a Provider Directory Multiple addresses per provider EHR HIE Hospital Association XD connections don t require mailboxes No universal directory format Cellphone directory? directory?

21 How do I know it was delivered Message Disposition Notification (MDN) Dispatched Processed

22 The success view Direct Messaging Certification 22

23 Direct today 44 States have adopted Direct Major Growth* *as reported by the Direct Trust May, 2014

24 Who is Using Direct

25 What does the future hold Standard for healthcare communication and dialog EHR, HIE and Public Health Integration Patient engagement Self-reporting Syndromic surveillance support Product integration esigning Digital Certificate as Identity 25

26 Thanks Andy Nieto Healthcare IT Strategist x240 26

Direct Secure Messaging: Improving the Secure and Interoperable Exchange of Health Information

Direct Secure Messaging: Improving the Secure and Interoperable Exchange of Health Information Direct Secure Messaging: Improving the Secure and Interoperable Exchange of Health Information Within the healthcare industry, the exchange of protected health information (PHI) is governed by regulations

More information

Exchanging Medical Records Online with Direct

Exchanging Medical Records Online with Direct Exchanging Medical Records Online with Direct Scott Rea, VP GOV/EDU Relations & Sr. PKI Architect, DigiCert, Inc. sales@digicert.com www.digicert.com +1 (801) 877-2100 Exchanging Medical Records Online

More information

Electronic Communication In Your Practice. How To Use Email & Mobile Devices While Maintaining Compliance & Security

Electronic Communication In Your Practice. How To Use Email & Mobile Devices While Maintaining Compliance & Security Electronic Communication In Your Practice How To Use Email & Mobile Devices While Maintaining Compliance & Security Agenda 1 HIPAA and Electronic Communication 2 3 4 Using Email In Your Practice Mobile

More information

Sunday March 30, 2014, 9am noon HCCA Conference, San Diego

Sunday March 30, 2014, 9am noon HCCA Conference, San Diego Meaningful Use as it Relates to HIPAA Compliance Sunday March 30, 2014, 9am noon HCCA Conference, San Diego CLAconnect.com Objectives and Agenda Understand the statutory and regulatory background and purpose

More information

Secure Email & File Transfer Practices in Healthcare 2014 / Sponsored by DataMotion

Secure Email & File Transfer Practices in Healthcare 2014 / Sponsored by DataMotion In late 2014, DataMotion conducted its annual survey of more than 700 IT and business professionals across the United States to gain insight into corporate email and file transfer policies. This report

More information

TABLE OF CONTENTS INTRODUCTION USE CASES FOR CONVERSION BETWEEN DIRECT AND XDR DATAMOTION XDR IMPLEMENTATION GLOSSARY OF TERMS

TABLE OF CONTENTS INTRODUCTION USE CASES FOR CONVERSION BETWEEN DIRECT AND XDR DATAMOTION XDR IMPLEMENTATION GLOSSARY OF TERMS TABLE OF CONTENTS INTRODUCTION USE CASES FOR CONVERSION BETWEEN DIRECT AND XDR Conversion from Direct SMTP+S/MIME Messages to XDR Conversion from XDR to SMTP+S/MIME Data Transmission between two EHRS that

More information

The Must Have Tools To Address Your Compliance Challenge

The Must Have Tools To Address Your Compliance Challenge The Must Have Tools To Address Your Compliance Challenge Industry leading Education October 21 - Top 5 tools to help you achieve HIPAA compliance November 11 - Saving time and money through web-based benefits

More information

Business and Technical Description of Commercial Systems The scope of the technical solution is further described below.

Business and Technical Description of Commercial Systems The scope of the technical solution is further described below. Introduction MaxMD is pleased to provide the Pennsylvania ehealth Partnership Authority (Authority) the Business and Technical Requirements report under the Lab Grant pilot project. We have demonstrated

More information

I. Purpose. Applicability of Policies. NATE-Policy #3.c.1

I. Purpose. Applicability of Policies. NATE-Policy #3.c.1 Subject: NATE-QE Eligibility Criteria for: Policy #: 3.c.1 Provider to Provider for Treatment Trust Profile (P2P4Tx) Status: Approved Approved/Authorized By: NATE Board of Directors Date Approved: 10/29/2013

More information

Practical Guidance to Implement Meaningful Use Stage 2. Secure Health Transport for Certification and Meaningful Use

Practical Guidance to Implement Meaningful Use Stage 2. Secure Health Transport for Certification and Meaningful Use Practical Guidance to Implement Meaningful Use Stage 2 1. Introduction Association Standards and Interoperability Workgroup Meaningful Use (MU) Stage 2 introduces three transport standards for use in healthcare

More information

HIPAA for HIT and EHRs. Latest on Meaningful Use and EHR Certification: For Privacy and Security Professionals

HIPAA for HIT and EHRs. Latest on Meaningful Use and EHR Certification: For Privacy and Security Professionals HIPAA for HIT and EHRs Latest on Meaningful Use and EHR Certification: For Privacy and Security Professionals Donald Bechtel, CHP Siemens Health Services Patient Privacy Officer Fair Information Practices

More information

The Direct Project Reference Implementation Architecture

The Direct Project Reference Implementation Architecture The Direct Project Reference Implementation Architecture 1 NwHIN Direct Approach Develop specifications for a secure, scalable, standardsbased way to establish universal health addressing and transport

More information

Arizona Health Information Exchange Marketplace. Requirements and Specifications Health Information Service Provider (HISP)

Arizona Health Information Exchange Marketplace. Requirements and Specifications Health Information Service Provider (HISP) Arizona Health Information Exchange Marketplace Requirements and Specifications Health Information Service Provider (HISP) Table of Contents Table of Contents... 1 Introduction... 2 Purpose... 3 Scope...

More information

Eligible Professionals

Eligible Professionals Eligible Professionals How can the Georgia Health Information Network (GaHIN) assist you in meeting Meaningful Use requirements? The charts below define Stage 1 & Stage 2 Meaningful Use objectives associated

More information

Navigating the Trends in Health Care Today. MEDITECH Solutions for Meaningful Use and Interoperability

Navigating the Trends in Health Care Today. MEDITECH Solutions for Meaningful Use and Interoperability Navigating the Trends in Health Care Today MEDITECH Solutions for Meaningful Use and Interoperability Certification Update EHRs Meeting ONC 2014 Standards "There is no such thing as being 'Stage 1 Certified'

More information

Customer Success Story. Health Unity. Health Unity and ClearDATA partner to help a large IDN achieve Meaningful Use

Customer Success Story. Health Unity. Health Unity and ClearDATA partner to help a large IDN achieve Meaningful Use Customer Success Story Health Unity Health Unity and ClearDATA partner to help a large IDN achieve Meaningful Use Page 2 of 5 Health Unity and ClearDATA Partner to Help a Large IDN Achieve Meaningful Use

More information

9/25/2012. Agenda. Defining the interrelation of MU, HIM and Release of Information IOD s partnership approach to MU

9/25/2012. Agenda. Defining the interrelation of MU, HIM and Release of Information IOD s partnership approach to MU Meaningful Use Certification & ROI 10/14/2012 Agenda Understanding Meaningful Use Stage 1 Stage 2 Defining the interrelation of MU, HIM and Release of Information IOD s partnership approach to MU Understanding

More information

EHR Incentive Program Stage 3 Objectives & Measures Crosswalk of Stage 3 Proposed Objectives, Measures & Corresponding Stage 2 Measures

EHR Incentive Program Stage 3 Objectives & Measures Crosswalk of Stage 3 Proposed Objectives, Measures & Corresponding Stage 2 Measures EHR Incentive Program Stage 3 Objectives & Measures Crosswalk of Stage 3 Proposed Objectives, Measures & Corresponding Stage 2 Measures Objective 1: Protect Patient Health Information Measures: 1 (Complete

More information

Expanded Support for Medicaid Health Information Exchanges

Expanded Support for Medicaid Health Information Exchanges Expanded Support for Medicaid Health Information Exchanges Joint Public Health Forum & CDC Nationwide Webinar April 21, 2016 CDC EHR Meaningful Use Webpage-Joint Public Health Forum & CDC Nationwide Webinars

More information

ehealth Vendor Workgroup: Transitions of Care March 20, 2014 12:00 PM ET

ehealth Vendor Workgroup: Transitions of Care March 20, 2014 12:00 PM ET ehealth Vendor Workgroup: Transitions of Care March 20, 2014 12:00 PM ET Topics / Agenda ToC Measure / CEHRT Review Direct: Edge Protocols Transaction counting / delivery notifications MU2 ToC Connect-A-Thon

More information

DIRECT Messaging: The Future of Communication Between Healthcare Providers. Presented by: Greg Anderson, CEO

DIRECT Messaging: The Future of Communication Between Healthcare Providers. Presented by: Greg Anderson, CEO DIRECT Messaging: The Future of Communication Between Healthcare Providers Presented by: Greg Anderson, CEO Agenda What is DIRECT and why do I care? You ve convinced me. How do I enroll? How do I set up

More information

Healthcare Compliance Solutions

Healthcare Compliance Solutions Privacy Compliance Healthcare Compliance Solutions Trust and privacy are essential for building meaningful human relationships. Let Protected Trust be your Safe Harbor The U.S. Department of Health and

More information

Business Associate Considerations for the HIE Under the Omnibus Final Rule

Business Associate Considerations for the HIE Under the Omnibus Final Rule Business Associate Considerations for the HIE Under the Omnibus Final Rule Joseph R. McClure, Esq. Counsel Siemens Medical Solutions USA, Inc. WEDI Privacy & Security Work Group Co-Chair Agenda Who is

More information

Guide to Using Mass HIway Webmail

Guide to Using Mass HIway Webmail Commonwealth of Massachusetts Executive Office of Health and Human Services Guide to Using Mass HIway Webmail October 29, 2015 Introductions Today s speakers Murali Athuluri Mass HIway Account Manger Senior

More information

Industry leading Education

Industry leading Education Industry leading Education Certified Partner Program Please ask questions For todays & past webinars go to: http://compliancy-group.com/ webinar/ Get Involved. #cgwebinar 855.85HIPAA www.compliancygroup.com

More information

Provider Help Guide for NIST EHR Randomizer Tool

Provider Help Guide for NIST EHR Randomizer Tool Provider Help Guide for NIST EHR Randomizer Tool Purpose of the EHR Randomizer: As part of the third measure for the Meaningful Use Stage 2 Transitions of Care Objective, Eligible Providers and Eligible

More information

Slide 1. Slide 2. Agenda

Slide 1. Slide 2. Agenda Slide 1 Slide 2 Agenda American Messaging introduction IntelliMessage Mobile Application Registration and Welcome email Download the app Login, Password and PIN Settings and Screen Orientation Status Sending

More information

Expanded Support for Medicaid Health Information Exchanges

Expanded Support for Medicaid Health Information Exchanges Expanded Support for Medicaid Health Information Exchanges Thomas Novak Medicaid Interoperability Lead Office of Policy Office of the National Coordinator for Health IT Medicaid Data & Systems Group Centers

More information

ITUS Med Solutions. HITECH & HIPAA Compliance Guide

ITUS Med Solutions. HITECH & HIPAA Compliance Guide Solutions HITECH & HIPAA Compliance Guide 75 East 400 South Suite 301 - Salt Lake City - UT - 84111 (801) 505-9570 www.itus-med.com Email: info@itus-med.com HITECH & HIPAA Compliance HITECH and HIPAA

More information

Demystifying Direct Messaging. Orion Health Whitepaper Author: Paul de Bazin, Integration Portfolio Manager

Demystifying Direct Messaging. Orion Health Whitepaper Author: Paul de Bazin, Integration Portfolio Manager Demystifying Direct Messaging Orion Health Whitepaper Author: Paul de Bazin, Integration Portfolio Manager Table of Contents 1! Introduction... 3! 2! Background... 3! 2.1! Standard Use Cases... 3! 3! Direct

More information

The Stage 2 Summary of Care objective (Core 15) involves 3 measures. The 3rd of these measures is that the provider satisfy one of the following:!

The Stage 2 Summary of Care objective (Core 15) involves 3 measures. The 3rd of these measures is that the provider satisfy one of the following:! The Stage 2 Summary of Care objective (Core 15) involves 3 measures. The 3rd of these measures is that the provider satisfy one of the following: Conduct one or more successful exchanges of a summary of

More information

PrivaSphere Gateway Certificate Authority (GW CA)

PrivaSphere Gateway Certificate Authority (GW CA) PrivaSphere Gateway Certificate Authority (GW CA) Send and receive secure emails with your email program through restricting firewalls using SMIME gateway functionalities. PrivaSphere Secure Messaging

More information

Ensuring Privacy & Security of Patient Information

Ensuring Privacy & Security of Patient Information Ensuring Privacy & Security of Patient Information Danika Brinda, Assistant Professor and REACH P&S Subject Matter Expert Jane McGrath, Program Manager REACH/Stratis Health Session 12, Thursday, June 12,

More information

A PRACTICAL GUIDE TO USING ENCRYPTION FOR REDUCING HIPAA DATA BREACH RISK

A PRACTICAL GUIDE TO USING ENCRYPTION FOR REDUCING HIPAA DATA BREACH RISK A PRACTICAL GUIDE TO USING ENCRYPTION FOR REDUCING HIPAA DATA BREACH RISK Chris Apgar Andy Nieto 2015 OVERVIEW How to get started assessing your risk What your options are how to protect PHI What s the

More information

PHS-Connect Users Group Forum. November 7, 2013

PHS-Connect Users Group Forum. November 7, 2013 PHS-Connect Users Group Forum November 7, 2013 Agenda Introductions and Opening Remarks PHS-Connect Update Direction of PHS-Connect What can PHS-Connect Do for Me and My EMR Secure Messaging for MU2 and

More information

Decrypting the Security Risk Assessment (SRA) Requirement for Meaningful Use

Decrypting the Security Risk Assessment (SRA) Requirement for Meaningful Use Click to edit Master title style Decrypting the Security Risk Assessment (SRA) Requirement for Meaningful Use Andy Petrovich, MHSA, MPH M-CEITA / Altarum Institute April 8, 2015 4/8/2015 1 1 Who is M-CEITA?

More information

CMS AND ONC FINAL REGULATIONS DEFINE MEANINGFUL USE AND SET STANDARDS FOR ELECTRONIC HEALTH RECORD INCENTIVE PROGRAM

CMS AND ONC FINAL REGULATIONS DEFINE MEANINGFUL USE AND SET STANDARDS FOR ELECTRONIC HEALTH RECORD INCENTIVE PROGRAM CMS AND ONC FINAL REGULATIONS DEFINE MEANINGFUL USE AND SET STANDARDS FOR ELECTRONIC HEALTH RECORD INCENTIVE PROGRAM The Centers for Medicare & Medicaid Services (CMS) and the Office of the National Coordinator

More information

Secure transmission of Protected Health Information (PHI)

Secure transmission of Protected Health Information (PHI) PHI Email Encryption Instructions for External Entities Page 1 of 5 Secure transmission of Protected Health Information (PHI) To ensure that all communications (email, phone, or fax) containing Protected

More information

Welcome to the Privacy and Security PowerPoint presentation in the Data Analytics Toolkit. This presentation will provide introductory information

Welcome to the Privacy and Security PowerPoint presentation in the Data Analytics Toolkit. This presentation will provide introductory information Welcome to the Privacy and Security PowerPoint presentation in the Data Analytics Toolkit. This presentation will provide introductory information about HIPAA, the HITECH-HIPAA Omnibus Privacy Act, how

More information

Meaningful Use Crosswalk to the Security Rule

Meaningful Use Crosswalk to the Security Rule Meaningful Use Crosswalk to the Security Rule Safeguarding Health Information: Building Assurance through HIPAA Security June 7, 2012 Adam H. Greene, J.D., M.P.H. Partner, Davis Wright Tremaine EHR Certification

More information

Meaningful Use. 101 for Physician Offices January 2012

Meaningful Use. 101 for Physician Offices January 2012 Meaningful Use 101 for Physician Offices January 2012 1 Agenda What is the E.H.R Incentive Program Requirements to meet How to participate Eligible Registration What do we have to do Certified package

More information

6/24/2013. HIE Strategy in California. Agenda. In the beginning

6/24/2013. HIE Strategy in California. Agenda. In the beginning HIE Strategy in California and Stage 2 Meaningful Use Robert M. Cothren, PhD Technical Director, California Health equality Institute for Population Health Improvement, UC Davis Health System Patient Centered

More information

Privacy and Security: Meaningful Use in Healthcare Organizations

Privacy and Security: Meaningful Use in Healthcare Organizations Privacy and Security: Meaningful Use in Healthcare Organizations Phyllis A. Patrick, MBA, FACHE, CHC July 20, 2011 Webinar Essentials 1. Session is currently being recorded, and will be available on our

More information

Gerry Hinkley Co-Chair, Health Care Industry Team Pillsbury Winthrop Shaw Pittman LLP

Gerry Hinkley Co-Chair, Health Care Industry Team Pillsbury Winthrop Shaw Pittman LLP How Regional Extension Centers (RECs), Beacon Programs, Community College Consortia and Health Insurance Exchanges Work and Why Privacy and Security are Important Gerry Hinkley Co-Chair, Health Care Industry

More information

The Patient Portal Ecosystem: Engaging Patients while Protecting Privacy and Security

The Patient Portal Ecosystem: Engaging Patients while Protecting Privacy and Security The Patient Portal Ecosystem: Engaging Patients while Protecting Privacy and Security NCHICA 11th Academic Medical Center Security & Privacy Conference, June 22-24, 2015 Panel Leader: Panelists: Amy Leopard,

More information

Enhancing the State s Healthcare Landscape through Trusted Information Exchange. Category: Digital Government: Government to Business

Enhancing the State s Healthcare Landscape through Trusted Information Exchange. Category: Digital Government: Government to Business Enhancing the State s Healthcare Landscape through Trusted Information Exchange Category: Digital Government: Government to Business Commonwealth of Massachusetts Executive Office of Health and Human Services

More information

uently Asked NextGen Questions Share Frequently Asked uently Asked Questions Frequently Asked FAQ Pre-General Release (April-June 2014)

uently Asked NextGen Questions Share Frequently Asked uently Asked Questions Frequently Asked FAQ Pre-General Release (April-June 2014) uestions Frequently Asked Questions Fre uestions Frequently Asked Questions Fre uestions FAQ Frequently Asked Questions Fre uestions Frequently Asked Questions Fre uestions Frequently Asked Questions Fre

More information

- Procedures for Administrative Access

- Procedures for Administrative Access HIPAA/HITECH Act Implementation Guidance for Microsoft Office 365 from GoDaddy HIPAA 1 and the HITECH 2 Act are U.S. laws that govern the security and privacy of personally identifiable health information

More information

Cloud Web Portal User Guide Version 2.0

Cloud Web Portal User Guide Version 2.0 Cloud Web Portal User Guide Version 2.0 Welcome to ncrypted Cloud! ncrypted Cloud is a Privacy, Security, and Collaboration application that uses Industry Standard Encryption Technology (AES-256 bit encryption)

More information

AHLA. B. HIPAA Compliance Audits. Marti Arvin Chief Compliance Officer UCLA Health System and David Geffen School of Medicine Los Angeles, CA

AHLA. B. HIPAA Compliance Audits. Marti Arvin Chief Compliance Officer UCLA Health System and David Geffen School of Medicine Los Angeles, CA AHLA B. HIPAA Compliance Audits Marti Arvin Chief Compliance Officer UCLA Health System and David Geffen School of Medicine Los Angeles, CA Anna C. Watterson Davis Wright Tremaine LLP Washington, DC Fraud

More information

ILHIE Direct Secure Messaging Solution

ILHIE Direct Secure Messaging Solution ILHIE Direct Secure Messaging Solution How Secure Messaging Can Improve Patient Care and Help You Achieve Stage 1 Meaningful Use January 2012 1 What is Secure Messaging? Secure Messaging is an encrypted

More information

Meaningful Use: Stage 3 Proposed Rule Chart

Meaningful Use: Stage 3 Proposed Rule Chart Meaningful Use: Stage 3 Rule Chart Objectives: Objective 1-Protect Patient Health Information: Protect electronic protected health information (ephi) created or maintained by the CEHRT through the implementation

More information

Meaningful Use Stage 3 Proposed Rule: What it Means for Hospitals, Physicians & Health IT Developers

Meaningful Use Stage 3 Proposed Rule: What it Means for Hospitals, Physicians & Health IT Developers Meaningful Use Stage 3 Rule: What it Means for Hospitals, Physicians & Health IT Developers Vernessa T. Pollard and Nicole Liffrig Molife April 2015 With the publication of the Stage 3 Meaningful Use Rule

More information

2/27/2014. Meaningful Use as it Relates to HIPAA Compliance. Objectives and Agenda. Understand the statutory and regulatory background and purpose

2/27/2014. Meaningful Use as it Relates to HIPAA Compliance. Objectives and Agenda. Understand the statutory and regulatory background and purpose Meaningful Use as it Relates to HIPAA Compliance Sunday March 30, 2014, 9am noon HCCA Conference, San Diego CLAconnect.com Objectives and Agenda Understand the statutory and regulatory background and purpose

More information

Leveraging the Provider Incentive Program for Increased Functionality Beyond Meaningful Use

Leveraging the Provider Incentive Program for Increased Functionality Beyond Meaningful Use Leveraging the Provider Incentive Program for Increased Functionality Beyond Meaningful Use August 2012 Agenda! Goals and Background of Session! Perspectives on Meaningful Use (MU)! State EHR Incentive

More information

The Future of Meaningful Use

The Future of Meaningful Use The Future of Meaningful Use Stage 3 Erin Dormaier, CHTS-IM, PCMH CCE Transformation Support Services Manager 2015 CORHIO All Rights Reserved CORHIO Proprietary Not For Redistribution 1 Agenda Stage 3

More information

EJGH Email Encryption User Tip Sheet 10-11-2013 1 of 8

EJGH Email Encryption User Tip Sheet 10-11-2013 1 of 8 EJGH Email Encryption User Tip Sheet 10-11-2013 1 of 8 External Users Decrypting Secure Messages The following sections describe how users external to EJGH receive and decrypt secure messages. Reading

More information

The basics of Health Information Technology

The basics of Health Information Technology The basics of Health Information Technology 2012 1 What is Health Information Technology? Health IT, or e-health, is increasingly viewed as the most promising tool for improving the overall quality, safety

More information

EHR Incentive Program Updates. Jason Felts, MS HIT Practice Advisor

EHR Incentive Program Updates. Jason Felts, MS HIT Practice Advisor EHR Incentive Program Updates Jason Felts, MS HIT Practice Advisor An Important Reminder For audio, you must use your phone: Step 1: Call (866) 906-0123. Step 2: Enter code 2071585#. Step 3: Mute your

More information

Commonwealth of Massachusetts Executive Office of Health and Human Services. The Golden Spike Integration Options 8/20/2012

Commonwealth of Massachusetts Executive Office of Health and Human Services. The Golden Spike Integration Options 8/20/2012 Commonwealth of Massachusetts Executive Office of Health and Human Services The Golden Spike Integration Options 8/20/2012 Agenda Introduction HIE Integration Options HIE Integration Specifications Golden

More information

HIE Services & Pricing

HIE Services & Pricing Services Available at No Cost Health Information Exchange Services & Pricing Package Effective: December 11, 2015 0 Interface Connection Details Services Available at No Cost HealthlinkNY Web Portal The

More information

Health Information Exchange in NYS

Health Information Exchange in NYS Health Information Exchange in NYS Roy Gomes, RHIT, CHPS Implementation Project Manager 1 Who is NYeC? 2 Agenda NYeC Background Overview and programs Assist providers transitioning from paper to electronic

More information

MAKING HEALTH INFORMATION ACCESSIBLE & SECURE. w w w. i m e d i c o r. c o m

MAKING HEALTH INFORMATION ACCESSIBLE & SECURE. w w w. i m e d i c o r. c o m MAKING HEALTH INFORMATION ACCESSIBLE & SECURE w w w. i m e d i c o r. c o m SOFTWARE FEATURES ONC COMPLETE AMBULATORY EHR CERTIFIED MU- 2 Fully hosted and managed solution Intuitive interface Accessible

More information

Reading an email sent with Voltage SecureMail. Using the Voltage SecureMail Zero Download Messenger (ZDM)

Reading an email sent with Voltage SecureMail. Using the Voltage SecureMail Zero Download Messenger (ZDM) Reading an email sent with Voltage SecureMail Using the Voltage SecureMail Zero Download Messenger (ZDM) SecureMail is an email protection service developed by Voltage Security, Inc. that provides email

More information

Indiana Council of Community Mental Health Centers. October 14, 2013

Indiana Council of Community Mental Health Centers. October 14, 2013 Indiana Council of Community Mental Health Centers October 14, 2013 Role of the State HIT Coordinator Develop and advocate for HIT Policy Coordinate efforts with Medicaid, public health, and other federally

More information

AT&T Healthcare Community Online: Enabling Greater Access with Stronger Security

AT&T Healthcare Community Online: Enabling Greater Access with Stronger Security AT&T Healthcare Community Online: Enabling Greater Access with Stronger Security Overview/Executive Summary With a nationwide move to electronic health record (EHR) systems, healthcare organizations and

More information

HIE Services & Pricing

HIE Services & Pricing Services Available at No Cost Health Information Exchange Services & Pricing Package Services Available at No Cost Services Available at No Cost HealthlinkNY Web Portal The HealthlinkNY Web Portal is available

More information

Health Information Exchange First Considerations

Health Information Exchange First Considerations Health Information Exchange First Considerations Overview Health Information Exchange (HIE) is one of the most common forms of utilizing an EHR solution and supports key requirements of Meaningful Use

More information

HIPAA/HITECH Act Implementation Guidance for Microsoft Office 365 and Microsoft Dynamics CRM Online

HIPAA/HITECH Act Implementation Guidance for Microsoft Office 365 and Microsoft Dynamics CRM Online HIPAA/HITECH Act Implementation Guidance for Microsoft Office 365 and Microsoft Dynamics CRM Online HIPAA 1 and the HITECH Act 2 are U.S. laws that govern the security and privacy of personally identifiable

More information

Account Restrictions Agreement [ARA] - Required by LuxSci HIPAA Accounts

Account Restrictions Agreement [ARA] - Required by LuxSci HIPAA Accounts Medical Privacy Version 2015.04.13 Account Restrictions Agreement [ARA] - Required by LuxSci HIPAA Accounts In order for Lux Scientiae, Incorporated (LuxSci) to ensure the security and privacy of all Electronic

More information

HIE Strategy in California and Stage 2 Meaningful Use

HIE Strategy in California and Stage 2 Meaningful Use HIE Strategy in California and Stage 2 Meaningful Use Robert M. Cothren, PhD Technical Director, California Health equality Institute for Population Health Improvement, UC Davis Health System Patient-Centered

More information

Provider Directories Initiative Overview

Provider Directories Initiative Overview Provider Directories Initiative Overview PD PD PD PD PD PD PD January 20, 2012 Table of Contents 1 Introduction to the S&I Framework 2 3 What is unique about the S&I Framework Introduction to Provider

More information

Using etoken for Securing E-mails Using Outlook and Outlook Express

Using etoken for Securing E-mails Using Outlook and Outlook Express Using etoken for Securing E-mails Using Outlook and Outlook Express Lesson 15 April 2004 etoken Certification Course Securing Email Using Certificates Unprotected emails can be easily read and/or altered

More information

HIPAA Compliance Guide

HIPAA Compliance Guide HIPAA Compliance Guide Important Terms Covered Entities (CAs) The HIPAA Privacy Rule refers to three specific groups as covered entities, including health plans, healthcare clearinghouses, and health care

More information

How We Did It. Unique data model abstraction layer to integrate, but de-couple EHR data from patient website design.

How We Did It. Unique data model abstraction layer to integrate, but de-couple EHR data from patient website design. EHR Accessibility The Big Idea: Provide a standardized and improved user experience for ALL disabled and abled patients while interacting with their providers Electronic Health Records System (EHR). The

More information

WHAT S NEW ON THE EHR FRONT?

WHAT S NEW ON THE EHR FRONT? WHAT S NEW ON THE EHR FRONT? Mike Orr, Director Travis Skinner, Senior Managing Consultant TODAYS AGENDA Finalized 2015 EHR Modification Rule (EHs & EPs) New Measures & Objectives EHR Tentative Settlement

More information

Encrypted Email. Page 1 of 8

Encrypted Email. Page 1 of 8 Encrypted Email Version 2.1 General Level Instructions HIPAA Compliant Solution for Secured Communications via Email Created by National Billing Center LLC 2012-2013 Page 1 of 8 Table of Contents 1. Description

More information

Participating in a Health Information Exchange (HIE) Many Faces of Community Health 2011. 10/27/11 Greg Linden

Participating in a Health Information Exchange (HIE) Many Faces of Community Health 2011. 10/27/11 Greg Linden Participating in a Health Information Exchange (HIE) Many Faces of Community Health 2011 10/27/11 Greg Linden CIO, Stratis Health HIE Subject Matter Expert, REACH Objective This session will outline options

More information

Sustainable Compliance: A System for Ongoing Audit Readiness

Sustainable Compliance: A System for Ongoing Audit Readiness View the Replay on YouTube Sustainable Compliance: A System for Ongoing Audit Readiness FairWarning Executive Webinar Series November 14, 2013 Agenda Sustainable Compliance at St. Charles Health System

More information

Business Associates, HITECH & the Omnibus HIPAA Final Rule

Business Associates, HITECH & the Omnibus HIPAA Final Rule Business Associates, HITECH & the Omnibus HIPAA Final Rule HIPAA Omnibus Final Rule Changes Business Associates Marissa Gordon-Nguyen, JD, MPH Health Information Privacy Specialist Office for Civil Rights/HHS

More information

Digital Healthcare: Author. A HIPAA compliant cloud strategy. Choosing a Cloud Service Provider. Alex Ginzburg

Digital Healthcare: Author. A HIPAA compliant cloud strategy. Choosing a Cloud Service Provider. Alex Ginzburg : A HIPAA compliant cloud strategy. Choosing a Cloud Service Provider Author Alex Ginzburg VP of Technology, Intervention Insights, Inc. Kanda Software 200 Wells Ave, Newton, MA 02459 617-340-3850 Over

More information

CHCANYS NYS HCCN ecw Webinar

CHCANYS NYS HCCN ecw Webinar CHCANYS NYS HCCN ecw Webinar Modified Stage 2 Meaningful Use Using ecw, UDS SOGI and PRAPARE Stephanie Rose, HCNNY July 28, 2016 Agenda 1. Meaningful Use Modified Stage 2 in ecw 2. MAQ Dashboards 3. UDS

More information

Meaningful Use the Role of Health Information Exchange (HIE)

Meaningful Use the Role of Health Information Exchange (HIE) Meaningful Use the Role of Health Information Exchange (HIE) Inland Empire Health Information Exchange IEHIE Dr. Richard Swafford, PhD Executive Director Inland Empire HIE Overview General Requirements

More information

Managing Privacy and Security Challenges of Patient EHR Portals

Managing Privacy and Security Challenges of Patient EHR Portals Managing Privacy and Security Challenges of Patient EHR Portals Jacki Monson, JD, CHC Adam H. Greene, JD, MPH DISCLAIMER: The views and opinions expressed in this presentation are those of the author and

More information

FDIC Secure Email Procedures for External Users April 23, 2010

FDIC Secure Email Procedures for External Users April 23, 2010 FDIC Secure Email Procedures for External Users April 23, 2010 This document contains information proprietary to the Federal Deposit Insurance Corporation. Table of Contents 1. Introduction...2 2. Receiving

More information

How to use Certificate in Microsoft Outlook

How to use Certificate in Microsoft Outlook How to use Certificate in Microsoft Outlook Macau Post esigntrust Version. 2006-01.01p Agenda Configure Microsoft Outlook for using esigntrust Certificate Use certificate to sign e-mail Use Microsoft Outlook

More information

WHAT S NEW ON THE EHRFRONT?

WHAT S NEW ON THE EHRFRONT? WHAT S NEW ON THE EHRFRONT? Mike Orr, Director Travis Skinner, Senior Managing Consultant TODAYS AGENDA Finalized 2015 EHR Modification Rule (EHs & EPs) New Measures & Objectives EHR Tentative Settlement

More information

Meaningful Use And Impact on Immunization Outcomes

Meaningful Use And Impact on Immunization Outcomes Meaningful Use And Impact on Immunization Outcomes Objectives Meaningful Use: What does it mean? How it impacts Electronic Health Record (EHR) use What it means to VacTrAK What it means to improved immunization

More information

Meaningful Use Stage 2 & HIPAA: The Relationship between HIPAA and Meaningful Use Privacy & Security Regulations View the Replay on YouTube

Meaningful Use Stage 2 & HIPAA: The Relationship between HIPAA and Meaningful Use Privacy & Security Regulations View the Replay on YouTube 2012 FairWarning, Inc. Meaningful Use Stage 2 & HIPAA: The Relationship between HIPAA and Meaningful Use Privacy & Security Regulations View the Replay on YouTube April 12, 2012 2012 FairWarning, Inc.

More information

HIPAA COMPLIANCE AND DATA PROTECTION. sales@eaglenetworks.it +39 030 201.08.25 Page 1

HIPAA COMPLIANCE AND DATA PROTECTION. sales@eaglenetworks.it +39 030 201.08.25 Page 1 HIPAA COMPLIANCE AND DATA PROTECTION sales@eaglenetworks.it +39 030 201.08.25 Page 1 CONTENTS Introduction..... 3 The HIPAA Security Rule... 4 The HIPAA Omnibus Rule... 6 HIPAA Compliance and EagleHeaps

More information

Clearswift Information Governance

Clearswift Information Governance Clearswift Information Governance Implementing the CLEARSWIFT SECURE Encryption Portal on the CLEARSWIFT SECURE Email Gateway Version 1.10 02/09/13 Contents 1 Introduction... 3 2 How it Works... 4 3 Configuration

More information

Health Information Technology (IT) Simplified

Health Information Technology (IT) Simplified Health Information Technology (IT) Simplified A glossary of all things Health IT Accountable Care Organizations (ACO) - A group of health care providers who give coordinated care, chronic disease management,

More information

Open Platform. Clinical Portal. Provider Mobile. Orion Health. Rhapsody Integration Engine. RAD LAB PAYER Rx

Open Platform. Clinical Portal. Provider Mobile. Orion Health. Rhapsody Integration Engine. RAD LAB PAYER Rx Open Platform Provider Mobile Clinical Portal Engage Portal Allegro PRIVACY EMR Connect Amadeus Big Data Engine Data Processing Pipeline PAYER CLINICAL CONSUMER CUSTOM Open APIs EMPI TERMINOLOGY SERVICES

More information

Opportunities for Medicaid to Invest in HIT. Shannah Koss, Principal Koss on Care LLC

Opportunities for Medicaid to Invest in HIT. Shannah Koss, Principal Koss on Care LLC Opportunities for Medicaid to Invest in HIT Shannah Koss, Principal Koss on Care LLC Topics Key HIT components in the ARRA What is happening in state Medicaid programs today? Challenges and opportunities

More information

Consulting Services for Dentists to Reach Stage 1 Meaningful Use July 16, 2015

Consulting Services for Dentists to Reach Stage 1 Meaningful Use July 16, 2015 Consulting Services for Dentists to Reach Stage 1 Meaningful Use July 16, 2015 Today s presenters: Thomas Bennett, Client Services Relationship Manager Elisabeth Renczkowski, Content Specialist Agenda

More information

Version 4 Revised 5/2015

Version 4 Revised 5/2015 Email Encryption Manual Version 4 Revised 5/2015 This document provides information on sending, receiving, and saving encrypted emails using the WRC Group Message Center. Contents What is Email Encryption...

More information

Protect Patient Health Information

Protect Patient Health Information Protect Patient Health Information Protect electronic protected health information (ephi) created or maintained by the certified EHR technology through the implementation of appropriate technical, administrative

More information

Increasing ebilling in the Healthcare Industry Without Running Afoul of Privacy Laws

Increasing ebilling in the Healthcare Industry Without Running Afoul of Privacy Laws Increasing ebilling in the Healthcare Industry Without Running Afoul of Privacy Laws Speakers: Barrie Arnold, Vice President, Striata Donna Kennedy, Vice President, Western Union Payments Credentials Check

More information

How to use the Alertsec Service to Achieve HIPAA Compliance for Your Organization

How to use the Alertsec Service to Achieve HIPAA Compliance for Your Organization How to use the Alertsec Service to Achieve HIPAA Compliance for Your Organization Alertsec offers Cloud Managed - Policy Controlled - Security Modules for Ensuring Compliance at the Endpoints Contents

More information