Sutter Health. Send It / Secure It / Control It Cloud based data exchange for business. For more information / 1.800.672.7233 info@datamotioncorp.

Similar documents
Bridging People and Process. Bridging People and Process. Bridging People and Process. Bridging People and Process

The GlobalCerts TM Secur Gateway TM

Secure Messaging is far more than encryption.

Extend the value of Microsoft Dynamics ERP with other technology innovations from Microsoft

mkryptor allows you to easily send secure s. This document will give you a technical overview of how. mkryptor is a software product from

U.S. Bank Secure Mail

Banking Corporation Provides Unified Communications with Cloud-Based Services

Wakefield Council Secure and file transfer User guide for customers, partners and agencies

Secure User Guide

A NATURAL FIT. Microsoft Office 365 TM and Zix TM Encryption. By ZixCorp

Secure Inside the Corporate Network: INDEX 1 INTRODUCTION 2. Encryption at the Internal Desktop 2 CURRENT TECHNIQUES FOR DESKTOP ENCRYPTION 3

GFI Product Manual. GFI MailArchiver Evaluation Guide

Secur User Guide

Deployment Guide. For the latest version of this document please go to:

Protecting Your Data On The Network, Cloud And Virtual Servers

Do better work together

GFI Product Guide. GFI Archiver Evaluation Guide

Best Practices for Trialing the Intronis Cloud Backup and Recovery Solution

A New Standard in Encrypted . A discussion on push, pull and transparent delivery

Pennsylvania Department of Public Welfare. Bureau of Information Systems OBSOLETE. Secure User Guide. Version 1.0.

REDCENTRIC MANAGED ARCHIVE SERVICE SERVICE DEFINITION

Secure Frequently Asked Questions

Business Case for Voltage Secur Mobile Edition

How to setup Outlook and Outlook Web Access (OWA) to give a send receipt and a read receipt (Options)

MICROSOFT EXCHANGE SERVER 2007 upgrade campaign. Telesales script

Setting up in Outlook Express

Track-It! 8.5. The World s Most Widely Installed Help Desk and Asset Management Solution

ZixCorp. The Market Leader in Encryption Services. Adam Lipkowitz ZixCorp (781)

Cryptshare for Outlook User Guide

Outlook XP Only

This document describes some of the features and setup of the Unified Communications table in EnterpriseWizard.

CISCO SECURE MAIL. External User Guide. 1/15/15 Samson V.

Recalling A Sent Message in Outlook 2010

Secur User Guide

MassTransit vs. FTP Comparison

Direct Secure Messaging: Improving the Secure and Interoperable Exchange of Health Information

VAULTIVE & MICROSOFT: COMPLEMENTARY ENCRYPTION SOLUTIONS. White Paper

Configuring Microsoft Dynamics AX 2012 Alerts and Notifications Using an SMTP Relay Server with Office 365

How to Pick Up Speed. Document Management for Health Care

Kopano product strategy & roadmap

Guidance for using the East Sussex County Council Secure system

SERVER CAL SUITES COMPONENT PRODUCT SPECIFIC DETAIL. Product

efolder White Paper: 5 Ways Business-Grade File Sync Makes Offices More Productive

Your Location Instant NOC using Kaseya. Administrator at Remote Location Secure access to Management Console from anywhere using only a browser

MITEL MiCOLLAB KEEPING PEOPLE CONNECTED AND PRODUCTIVE ANYTIME, ANYWHERE, ON ANY DEVICE KEY BENEFITS

Securing the Exchange of Information Inside and Outside the Organisation. Joe Combs EMEA Solution Consultant, edocs

Copyright 2012 Trend Micro Incorporated. All rights reserved.

SECURE User Guide

Registering at the Secur site

HIPAA: Briefing for Healthcare IT Security Personnel. Market Overview: HIPAA: Privacy Security and Electronic Transaction Standards

Introducing Sfax for direct customers

White Paper. Securing and Integrating File Transfers Over the Internet

Secure in Transition and Secure behind the Network Page 1

Using Voltage Secur

REDCENTRIC MANAGED BACKUP SERVICE SERVICE DEFINITION

MessageGuard 3.0 User Guide

MANAGED FILE TRANSFER: 10 STEPS TO HIPAA/HITECH COMPLIANCE

TECHNOLOGY OVERVIEW INTRONIS CLOUD BACKUP & RECOVERY

When Data Loss Prevention Is Not Enough:

Software Update Bulletin

Secure transmission of Protected Health Information (PHI)

Welcome to Marist College s new Voic system. Recording your Greeting. Contents of this Booklet. First Time Users, What do I need to get started?

WHITEPAPER. SECUREAUTH 2-FACTOR AS A SERVICE 2FaaS

Overview. Timeline Cloud Features and Technology

Popular Industry Applications

KEEPING PEOPLE CONNECTED AND PRODUCTIVE ANYTIME, ANYWHERE, ON ANY DEVICE

Whitepaper. Simple and secure. Business requirements for Enterprise File Sync and Share solutions.

Archiving Compliance Storage Management Electronic Discovery

Migrating Exchange Server to Office 365

Chapter 3 ADDRESS BOOK, CONTACTS, AND DISTRIBUTION LISTS

UNCLASSIFIED. UK Archiving powered by Mimecast Service Description

Server Installation Manual 4.4.1

Word Secure Messaging User Guide. Version 3.0

Safeguard Protected Health Information With Citrix ShareFile

HIPAA: Healthcare Transformation to Electronic Communications. Open Text Fax and Document Distribution Group May 2009

Specialty Foods Retailer Simplifies Collaboration with Switch to Office 365

Encryption Recipient Guidelines

How to install and use the File Sharing Outlook Plugin

User Guide. IntraLinks Courier Plug-in for Microsoft Outlook

CallPilot. Release 2.0. My CallPilot User Guide

12 Key File Sync and Share Advantages of Transporter Over Box for Enterprise

How To Use Mitel Micollab

1 Product. Open Text is the leading fax server vendor in the world. *

Introduction to Mobile Access Gateway Installation

Endpoint Virtualization for Healthcare Providers

Steps to Opening Your First Password-Protected Envelope

1. How to Register Forgot Password Login to MailTrack Webmail Accessing MailTrack message Centre... 6

COMMVAULT SIMPANA 10 SOFTWARE MULTI-TENANCY FEATURES FOR SERVICE PROVIDERS

Top 7 Tips for Better Business Continuity

CUSTOMER MANAGEMENT IN THE CLOUD

Secure User Guide. Guidance for Recipients of Secure Messages from Lloyds Banking Group

Encryption. For the latest version of this document please go to: v 1.0 May 16,2011 Audience: Staff

MassTransit Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management

Citrus Valley Health Partners. Web Outlook User Guide. Table of Contents

EJGH Encryption User Tip Sheet of 8

Encryption Services

Why the need for set of rules in Microsoft Outlook?

Cloud Web Portal User Guide Version 2.0

HERO-DefendeRx & Secure-Cloud Overview

PaperClip Incorporated 3/7/06; Rev 9/18/09. PaperClip Compliant Service Whitepaper

Transcription:

Send It / Secure It / Control It Cloud based data exchange for business For more information / 1.800.672.7233 info@datamotioncorp.com

CHALLENGE: HIPAA compliance; cost containment SOLUTION: DataMotion SecureMail On Premise Background Sutter Health, one of the nation s largest healthcare provider networks, must occasionally share private healthcare information with doctors, insurers, government agencies and others outside of its enterprise network. And its own policies, as well as the Health Insurance Portability & Accountability Act (HIPAA), require that those communications be secure. To help meet that requirement, Sutter Health turned to the DataMotion solution, which is based on Microsoft technology. In addition to helping meet privacy requirements, the solution was fast and cost-effective to deploy and remains highly cost-effective to maintain. The solution virtually manages itself Sutter Health says, fits seamlessly within the company s existing Microsoft infrastructure, and can be supported with little or no increase in the organization s e-mail support staff. Situation The healthcare professionals at Sutter Health, one of the country s largest not-for-profit healthcare networks, communicate with a broad range of people outside of the network: they consult with colleagues at other institutions, report medical results to insurance companies and state and federal agencies, and participate in research trials that span many institutions. And doctors and other healthcare providers at Sutter Health can access files for viewing at home or at other times while they are away from their offices. While Sutter s healthcare professionals always took care to ensure the confidentiality of protected health information (PHI), the network needed to ensure it met the privacy standards required by the Health Insurance Portability & Accountability Act (HIPAA). While some forms of communication used by Sutter Health including certified U.S. Postal Service and private couriers were secure, they were costly and too slow for many uses. Electronic Data Interchange was fast, but too expensive for intermittent use such as for the filing of quarterly government reports. E-mail was an essential part of the Sutter Health mix, yet it was one of the most inherently non-secure means of communication, subject to hackers and to inadvertent misdirection. The network explored a range of options, including equipping all authorized users with software keys for encrypting their communications. But virtually every possible solution had significant drawbacks for Sutter Health, including high purchase prices, high maintenance costs, and high maintenance burdens on the network s e-mail support staff. Some solutions would subject all Sutter Health e-mail to content filtering, which network IT professionals felt added unnecessary complexity. Other solutions would rely on off-site hosting at an application service provider (ASP), which offered less control over security. Since the solution relies on the same Microsoft technologies that we already know and support, we didn t need any special training in IT. Ray Balut, Chief Information Security Officer, Sutter Health

The DataMotion and Microsoft solution ensures we can take full advantage of email while ensuring patient confidentiality. Jean Bowman, Application Security and HIPAA Security We needed an absolutely reliable, secure solution which would neither burden our staff nor exceed our budget, says Ray Balut, Chief Information Security Officer for Sutter Health. Solution The DataMotion solution meets Balut s requirements. One thousand of the network s more than 15,000 users now use DataMotion to send mail securely from their standard Microsoft Office Outlook 2000 desktop software and to receive secure replies from correspondents outside of the network. The Right Provider, The Right Technology We chose DataMotion because it meets all of our requirements: HIPAA-Compliance, low cost, ease of use, and simple implementation, says Balut. It also provides secure support for the range of scenarios we experience, including remote access for our physicians and other healthcare providers, whether they re using their laptops at home or standing in front of a kiosk at a medical conference. Sutter Health was also pleased that DataMotion was built on the same Microsoft technologies that the company already uses including the Microsoft Windows operating system and that it interoperates with key components such as Outlook on the desktop and Microsoft SQL Server on the backend, according to Andrew Albrecht, Enterprise Security Engineer. Specifically, the DataMotion solution runs on Microsoft Windows 2000 Advanced Server with Internet Information Services (IIS) 5.0 and the.net Framework 1.1, and also includes SQL Server 2000. The.NET Windows operating system that provides a programming model and runtime for Web services, Web applications, and smart client applications. The solution was developed using the Microsoft Visual Studio.NET 2002 integrated development environment. The solution includes a database and application server running SQL Server 2000 and the DataMotion application, which connects to a pair of IIS 5.0 Web servers. The database server sits inside Sutter Health s internal firewall. The Web servers sit in the DMZ between the internal and external firewalls. All secure mail coming in from the Internet or out from Sutter Health s Exchange Server infrastructure pass through the Web servers. The Web servers, in turn, are the only servers that communicate with the secure database. Sutter Health deploys two Web servers to provide load-balancing and fault-tolerance. Putting DataMotion To Work Sutter Health authorizes its users to send secure e-mail on a user-by-user basis, which gives its Privacy Officers the opportunity to understand what private healthcare information is flowing outside the organization via e-mail. Authorized users then are provided with a simple plug-in for their desktop Outlook software, which adds a Send Certified button to their tool bars. Users thus have the option to continue to send nonprivate mail normally by clicking Send, in addition to sending PHI securely by clicking Send Certified. Since the solution relies on the same Microsoft technologies that we already know and support, we didn t need any special training in IT. Ray Balut, Chief Information Security Officer, Sutter Health

Several steps complete the DataMotion SecureMail process: When users choose to send an e-mail message securely via DataMotion, the Send Certified button directs the message from their Outlook software through the Exchange Server as usual. The message is then routed to the DataMotion system, which stores the message in the user s account on the database server. The solution generates an e-mail message to the intended recipient, which explains that the recipient has a secure message, created by the sender. The recipient clicks on a hotlink in the e-mail message to go to a secure DataMotion Web page, where they are directed to choose a password, establishing their account. The solution then generates a second account verification e-mail to the recipient, with a hot link to a DataMotion Web page on which the recipient can enter the password and view the message. Recipients can choose to send secure replies to the original senders, who will receive similar notifications in their Outlook inboxes about the availability of those replies. The system can be configured to deliver inbound DataMotion messages in-the-clear to the internal mail server, eliminating the need for employees to click on messaging waiting links. In addition to making the solution available to authorized users via their desktop computers, Sutter Health allows them to access their DataMotion accounts remotely, over the Web, while they re away from the office. This version of the solution works like the Web mail accounts such as MSN or Hotmail with which most e-mail users are already familiar. A physician, for example, can access a private document to his or her home or office computer for afterhours work using the system. Instead of sending the document out of the Sutter Health secure infrastructure, he or she sends a link only and can later view the document securely from its storage location without actually downloading it. Benefits Compliance with HIPAA Requirements Sutter Health was looking for a way to bring its e mail communications into compliance with HIPAA standards, and the DataMotion solution running on the Windows platform delivers this benefit, according to Sutter Health. Bringing our e mail communications into compliance with HIPAA is additional assurance for our patients that their private information will remain private, and assurance for Sutter Health that we are meeting our customers needs and compliance requirements, says Jean Bowman, Application Security and HIPAA Security at Sutter Health. We ll continue to use a variety of solutions to communicate PHI to authorized parties but e mail is essential to our operations: it s one of the fastest and most convenient ways we have to communicate and is an integral part of our patient care operations. The DataMotion and Microsoft solution ensures that we can take full advantage of e mail while ensuring patient confidentiality.

Simple, Low cost Deployment and Maintenance Sutter Health needed its secure e-mail solution to be more then effective it needed it to be simple and costeffective, as well. And the solution provides these benefits as well. DataMotion worked with Sutter Health to develop the solution design and deployment plan, then implemented that plan in just 29 days. Microsoft technologies such as Microsoft Windows Server Terminal Services enabled DataMotion to install and configure the solution software remotely, subsequent to establishing a secure VPN connection making the process simultaneously quicker and less expensive. On a continuing basis, various features contribute to a solution that Sutter Health can implement without adding to the size and cost of its modestly sized e-mail support staff. E-mail messages are automatically compressed and encrypted in the SQL Server database and purged automatically after a system-defined expiration period, eliminating the need for manual deletion. Administration is handled by an integrated ASP.NET administrative console and SQL Server Enterprise Manager. The SQL Server automated backup and maintenance wizard further reduces the need for manual maintenance. There s almost no cost to maintaining the DataMotion and Microsoft solution it virtually manages itself, says Balut. Nor do we have to take time to support users who lose encryption keys or have other problems with the software there s nothing for them to lose or break. In fact, because the solution integrates seamlessly with Outlook, our users need minimal training. They tell us they love the solution. And since the solution relies on the same Microsoft technologies that we already know and support, we didn t need any special training in IT either. For more information about Microsoft products and services, call the Microsoft Sales Information Center at (800) 426-9400. Customers who are deaf or hard of hearing can reach Microsoft text telephone (TTY/TDD) services at (800) 892-5234 in the United States or (905) 568-9641 in Canada. For more information about Sutter Health products and services, call Phone: (916) 454-8200 or visit the Web site at: http://www.sutterhealth.org ABOUT DATAMOTION DataMotion, Inc. is a leading provider of information delivery solutions that enable businesses to safely and easily transact with partners and customers. DataMotion solutions leverage your existing IT infrastructure resulting in rapid deployment and a quick return on investment, saving as much as $5 for every $1 spent. Core applications of the DataMotion suite include encrypted e-mail, file transfers, electronic forms and programmatic APIs for integration. Solutions are available as hosted services or on-premise software. DataMotion s unified platform provides visibility, security, management and reporting to all data exchanges helping customers streamline business workflow and achieve regulatory compliance. FOR MORE INFORMATION CONTACT US 35 Airport Road Morristown New Jersey 07960 Tel: 800.672.7233 Email: info@datamotioncorp.com www.datamotion.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information