HIPAA Compliance Checklist for Healthcare Cloud Storage
With healthcare professionals embracing digital technologies to protect their patients' information, there is an industry wide need to ensure that the digital ecosystems are compliant with the Health Insurance Portability and Accountability Act. Sign Business Associate Agreements - Cloud provider that signs BAA confirms that he is HIPAA compliant with physical and digital security, storage management and backup technology along with user authentication and administrative practices. Publicly State about their HIPAA Compliance u2013 While looking for a cloud service provider always prefer a partner, who publicly state that they are HIPAA compliance. Conduct Assessments as per NIST Guidelines u2013 While seeking cloud services, one must conduct assessments of the service provider according to the National Institutes of Standards and Technology (NIST) Guidelines. Apt Policies and Procedures in Place u2013 The cloud service provider should have policies and procedures in place that are relevant to the HIPAA Privacy Rule, the HIPAA Security Rule, and the HIPAA Breach Notification Rule. Security and Privacy Issues are Aptly Addressed u2013 The cloud service providers should appropriately address all security, privacy, and administrative deficiencies and issues.
73 views • 6 slides