HIPAA-Compliant Email for Dental Practices: Easy, Convenient, Secure Communications from Virtru



Similar documents
HOW ENCRYPTION STRENGTHENS SECURITY. THE LEADER IN ENCRYPTION

Cirius Whitepaper for Medical Practices

Sutter Health. Send It / Secure It / Control It Cloud based data exchange for business. For more information / info@datamotioncorp.

Are your multi-function printers a security risk? Here are five key strategies for safeguarding your data

EGUIDE BRIDGING THE GAP BETWEEN HEALTHCARE & HIPAA COMPLIANT CLOUD TECHNOLOGY

Ensuring HIPAA Compliance with Pros 4 Technology Online Backup and Archiving Services

Document Imaging Solutions. The secure exchange of protected health information.

HIPAA: Bigger and More Annoying

Trust 9/10/2015. Why Does Privacy and Security Matter? Who Must Comply with HIPAA Rules? HIPAA Breaches, Security Risk Analysis, and Audits

Access is power. Access management may be an untapped element in a hospital s cybersecurity plan. January kpmg.com

Compliance in 5 Steps

HIPAA COMPLIANCE AND DATA PROTECTION Page 1

Business Case for Voltage Secur Mobile Edition

to EMR transition Contents

Ensuring HIPAA Compliance with Computer BYTES Online Backup and Archiving Services

Ensuring HIPAA Compliance with AcclaimVault Online Backup and Archiving Services

KEEPING PATIENT INFORMATION SAFE AND SECURE IN THE CLOUD

Direct Secure Messaging: Improving the Secure and Interoperable Exchange of Health Information

Decrypting the Security Risk Assessment (SRA) Requirement for Meaningful Use

Mapping Your Path to the Cloud. A Guide to Getting your Dental Practice Set to Transition to Cloud-Based Practice Management Software.

SOOKASA WHITEPAPER HIPAA COMPLIANCE.

Cyberprivacy and Cybersecurity for Health Data

Encryption Services

HIPAA COMPLIANCE AND

Compliance in the Corporate World

A New Standard in Encrypted . A discussion on push, pull and transparent delivery

PCI Compliance for Healthcare

10 Hidden IT Risks That Threaten Your Practice

Streamlining Medical Image Exchange with Cloud-Based Technology

CompleteCare+ Enterprise Voice

THE IMPORTANCE OF ENCRYPTION IN THE HEALTHCARE INDUSTRY

HIPAA Omnibus Rule Practice Impact. Kristen Heffernan MicroMD Director of Prod Mgt and Marketing

A Guide to Minimizing the Risk of IT Asset Disposition

Understanding HIPAA Privacy and Security Helping Your Practice Select a HIPAA- Compliant IT Provider A White Paper by CMIT Solutions

Have you ever accessed

A PRACTICAL GUIDE TO USING ENCRYPTION FOR REDUCING HIPAA DATA BREACH RISK

Implementing Electronic Medical Records (EMR): Mitigate Security Risks and Create Peace of Mind

ZixCorp. The Market Leader in Encryption Services. Adam Lipkowitz ZixCorp (781)

Security Considerations

Successful EHR Change Management

HIPAA Omnibus Rule Overview. Presented by: Crystal Stanton MicroMD Marketing Communication Specialist

Internet threats: steps to security for your small business

The CIO s Guide to HIPAA Compliant Text Messaging

HIPAA regulation: The challenge of integrating compliance and patient care

Guide to Taking Control of Your Healthcare

Why Encryption is Essential to the Safety of Your Business

APPENDIX 1: Frequently Asked Questions

White Paper. Document Security and Compliance. April Enterprise Challenges and Opportunities. Comments or Questions?

Managing PHI in the Cloud Best Practices

Safeguard Protected Health Information With Citrix ShareFile

Art Gross President & CEO HIPAA Secure Now! How to Prepare for the 2015 HIPAA Audits and Avoid Data Breaches

Transcription:

HIPAA-Compliant Email for Dental Practices: Easy, Convenient, Secure Communications from Virtru

It works in my current email, and it s easy for my staff, colleagues, and patients to use. There is financial protection in securing email, but as importantly, there is peace of mind. It s about doing something because it is the right thing to do. -- Dr. Eric Jones, Jones Smiles The Landscape Increased data capture promotes a dental office s ability to optimize decisionmaking, collaboration, efficiency, and convenience. However, with these opportunities comes a complex responsibility to secure proliferating and easily transferrable patient data. Protected health information (PHI) including 18 identifiers, such as names, social security numbers, medical record numbers, and identifying images is safeguarded by the HIPAA Privacy Rule. The rule protects sensitive information held in the stewardship of organizations that use it and gives patients rights with respect to that information. To serve patients effectively and manage the best possible care while operating a viable business dentists and their staffs must frequently share patient information among colleagues. While the value of leveraging relevant data for planning, decision-making, and billing is clear, the risk of noncompliance with HIPAA privacy standards can be costly, potentially resulting in: Negative press: Affinity Health Plan recently returned a leased photocopier without first erasing the hard drive. As part of an investigative feature, CBS News bought that copier and unleashed the story. 1 Patient dissatisfaction: I just got furious. I don t have words for it, a patient told KomoNews.com after learning her PHI had been hacked at UW Medicine and Harborview Medical Center. 2 Court time and costs: A pharmacist was recently sued for discussing protected information. The employer, Walgreens, was directed to pay $1.44 million in damages. 3

Information is today s invaluable commodity. Securing it preserves the financial health and public reputation of businesses whose success and patients well-being depend on protected use of sensitive data. Email Communications: Risks vs. Rewards For many, email has become the preferred means of communication and an expected standard in business communications. Viewed as the easiest, fastest way to communicate, patients, providers, dentists, and office staff expect to exchange information via email. Patients are increasingly expecting the opportunity to communicate with care providers electronically, said Darby Buroker, a health information exchange expert with more than 20 years of experience in the field. It is how we interact as a society. But practices at risk of divulging PHI are at risk of compromising their business potential. They must find secure solutions for email communication in order to compete and to deliver effective services for their patients. Dental practices need simple, affordable solutions that allow email communications to unfold seamlessly and securely. There are any number of day-to-day functions and emerging trends that lend themselves to an ongoing reliance on email dialogue, from x-rays to diagnostic images to prescriptions to scheduling information and billing detail. The ability to securely share PHI via email presents both business- and care-based advantages. It is easy, time-efficient, and environmentally friendly as compared to paper-based options. And it offers dentists and their staffs an additional vehicle for fostering relationships and promoting patients involvement in their care. Email has the potential to serve as a conduit toward greater collaboration, increased convenience, and stronger patient engagement, Buroker said. Today s financial pressures in healthcare require this, as it brings administrative burdens down and allows providers to accomplish more in less time. But one breach in security, and practices can face significant penalties.

If email communications open the door to expensive liability the mishandling of private patient information can incur fines from $100 to $50,000 4 why should dentists and their staff rely upon them at all? The answer is clear. Notwithstanding the risk email exchanges can carry, they have become a standard in today s culture and are here to stay. The Successes Virtru is rapidly building momentum as the market s simplest, most affordable, most effective email encryption solution for dental practices. Dentists are held to very similar standards as doctors, but have operated in a very standalone fashion, said Duane Tinker of Dental Compliance Specialists. They are associated with healthcare, but are not called physicians. Dentists have had some autonomy. They are trying to better align now, and earn the same recognition, but with that comes the added burden of following the same rules and regulations. Tinker once worked as a regulatory compliance investigator, a role in which he built significant knowledge of the habits and processes that invite risk for dental practices. He turned his expertise into a new line of business and now provides inspections and training related to OSHA, HIPAA, and other regulatory compliance. Compliance is conceptually challenging, he said. There is not a lot of real guidance from the government on how to meet requirements. The components can feel overwhelming, from written policies to data sharing to virus protection and data backup. Dentists can buy a compliance manual from the ADA. I can t tell you how many times I ve seen one in an office that hasn t even been removed from the shrink-wrap. HIPAA can be a headache, but it is clearly important and right to protect sensitive data, added Dr. Eric Jones, who operates a dental practice, Jones Smiles, in Flowery Branch, Ga. It is essential to find and employ every reasonable step you can to achieve compliance. Virtru is one of those easy, reasonable steps.

It connects so closely with the email features dentists are already using, Tinker said. They are comfortable. They just flip a switch. Trent Wolodko, another expert in the field, shares the sentiment. Virtru is dead simple to use, he said. Emails are easy to encrypt and decrypt, with the click of a button right there in the inbox. And without having to worry about how, dentists get end-to-end encryption with Virtru, encryption while the email is both in transit and at rest. Dr. Jones stresses the importance of ease of decryption along with seamless encryption. Many of the available options involve sending users to a secure website where they must enter an access code and password to open the encrypted communication, he said. That is a clunky and time-consuming process, and one that gave me great hesitation. The specialists and patients with whom we communicate deserve a simpler, more convenient solution. Wolodko, who deploys technology infrastructure solutions for dental practices via his Marialli Enterprises organization, also has noticed that dentists are inclined to communicate off the cuff sending communications that may contain protected names, social security numbers, credit card numbers, CT scans, x-rays, and more. As such, technology solutions must fit within their workflow and solve a challenge without exacerbating the obstacle with new burdens. Dentists are fully aware this is a problem, Wolodko said. It takes time. It s expensive. They may have a tendency to feel that, as they earn less money than doctors, frequently, that their data is less sensitive. They have a mistaken impression that they are too small to be noticed or hacked. They could not be more wrong. They must secure protected information from end to end, or they are risking themselves and their patients. In the face of such complexity, compliance and technology experts like Tinker and Wolodko have become invaluable resources to dentists who simply want to focus on

patient care. It s why their recommendations of solutions like Virtru are accepted with confidence. Virtru is just so simple, Tinker said. It will help dentists manage liability. It is very affordable and improving with each release. There is just no good reason not to do it. It s the right thing. What s nice about it is that you can choose email by email whether encryption is necessary, Wolodko added. It is silly to encrypt absolutely everything. That would place an unnecessary burden on recipients. With Virtru, you can educate dentists and office staff to be mindful of the types of data that are considered PHI, and they can easily encrypt messages that warrant secure sending. Virtru also has the ability to enter into business associate agreements (BAAs) with dental practice clients. Both Tinker and Wolodko cite this as an important distinction that demonstrates Virtru s understanding of the arena of HIPAA compliance and the role it plays as a trusted vendor helping to meet those critical requirements. The Financial Impact of HIPAA Violations Violation Penalty Individual unaware of violation Violation per reasonable cause, not willful neglect Up to $50,000 per violation, up to $1.5 million total per year Up to $50,000 per violation, up to $1.5 million total per year Violation due to neglect, but corrected within allowed timeframe Violation due to neglect, left uncorrected Up to $50,000 per violation, up to $1.5 million total per year $50,000 per violation, up to $1.5 million total per year Source: http://www.ama-assn.org/ama/pub/physician-resources/solutions-managing-your-practice/codingbilling-insurance/hipaahealth-insurance-portability-accountability-act/hipaa-violations-enforcement.page

I always tell my clients that if a communication isn t something they want to see on a front page, encrypt it, whether it s protected under HIPAA or not, Tinker said. Failure to address this can result in fines or malpractice suits costing from hundreds to tens of thousands of dollars, not to mention patients trust. Dentists, office staff, and patients can all use Virtru without jumping through hoops, Wolodko added. I recommend it because it s simple, affordable, and gets the job done. From the bottom rungs of tech support all the way up to the executive team, Virtru is delivering a solid product to a market that needs it. And Dr. Jones agrees that there simply is no good reason not to use Virtru. Patient Data Lost or Stolen Diverse forms of protected health information are at risk, as indicated by respondents to the Ponemon Institute s 2014 benchmark study on patient privacy and data security. 49% 48% 49% 46% 48% 47% 17% 22% 24% 20% 15% 25% 18% 15% 20% 18% 20% 19% 2% 2% 3% 0% 10% 20% 30% 40% 50% 60% FY 2013 FY 2012 FY 2011

It works in my current email, and it s easy for my staff, colleagues, and patients to use, he said. There is financial protection in securing email, but as importantly, there is peace of mind. It s about doing something because it is the right thing to do, and that shows we care. The Virtru Solution Pursuing digital security should be as much of a no-brainer as locking your door before you leave the house. Virtru is a walk in the park compared with some of the other options. 5 The New York Times The key with what Virtru does, apart from making encryption work on most ordinary cloud emails, is that it works across different platforms, something that is largely a gap today. 6 TechCrunch The challenge has always been to make it easy enough for everyone to use. But no one has ever figured out how to secure e-mail to everyone. We think these guys can do it. 7 The Washington Post How does the product earning these votes of confidence actually work? Simply put, with the sender s flip of a digital switch, Virtru allows users to secure their emails and attachments, keeping private communications private, while keeping it seamless for recipients to decrypt and read. Virtru is an email add-on that works with existing email providers, such as Gmail or Yahoo. With Virtru installed in a browser, email application, or mobile device, users are ready to send secure emails. Recipients can read the communications in a secure viewer without requiring any downloads, keys, or portal access codes. It s that easy. For dental practices that regularly communicate many of the 18 HIPAA-defined identifiers that constitute PHI, an email encryption solution is a must. Virtru stands out because: It s easy for the sender. It works with existing applications with which users are already familiar.

It s easy for recipients. They can read securely sent messages without installing any software. Its email and file revocation works. Users and administrators can take back mes- sages sent inside or outside their organizations. It provides a full audit and chain of custody of emails, supporting tracing and restriction of email and file forwarding over the full lifespan of the communication. It offers the ability to add expiration dates to emails and attachments without restricting administrators opportunity to archive and recover. It provides easy monitoring, management, and auditing capabilities. Perhaps best summed up by the Daily Dot, Virtru has one of the best encryption apps available to the public. It s easy to use, requires no complicated keys, and takes less than a minute to get going. 8 Virtru is small- to mid-sized dental practices fastest, easiest, most effective route toward HIPAA compliance in email. The Action Learn more about Virtru today. Visit us online, trial our free download, and contact us to discuss the Virtru business solution best suited to support your HIPAA compliance imperatives. www.virtru.com sales@virtru.com 1. http://www.dentistryiq.com/articles/2014/06/what-are-the-consequences-for-not-following-hipaa-regulations.html 2. Ibid. 3. Ibid. 4. http://www.healthcarecommunication.com/main/articles/hipaa_what_happens_when_you_dont_comply_11657.aspx 5. http://www.nytimes.com/2014/07/17/technology/personaltech/ways-to-protect-your-email-after-you-send-it. html?_r=0 6. http://techcrunch.com/2014/06/17/virtru-a-secure-email-app-built-by-an-ex-nsa-engineer-raises-6m/ 7. http://www.washingtonpost.com/business/capitalbusiness/former-national-security-agency-internet-specialist-getsfunds-for-e-mail-security-tool/2014/06/16/fd84708a-f593-11e3-8aa9-dad2ec039789_story.html 8. http://www.dailydot.com/technology/virtru-email-encryption-android-app/

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information