Skip to main content

The Doorway to Compliance

  • By Matt Conrad
  • Jun 01, 2010

The Health Insurance Portability and Accountability Act legislates how a patient’s information is managed, viewed, documented and transported in both interoffice and intra-office settings. The law protects both physical and electronic data and documents. It requires patients’ medical history be protected, but it also has forced organizations with access to this information to assess security needs and gaps to ensure compliance.

The difference between achieving HIPAA compliance and being in violation of these laws could be as simple as whether a door closes and locks properly.

Since HIPAA addresses information security from a comprehensive perspective, every place this information resides or passes through, both physically and electronically, must be protected.

Physical records must be in secured areas. Doors and locks into these areas should be inspected frequently to ensure their functionality. Entry management should ensure that only authorized personnel have access.

Some doors also must be alarmed, viewed by CCTV or staffed at all times.

The organization’s HIPAA compliance officer will determine which areas require enhanced security technology.

User protocols need to do more than establish who has access to the information; they need to establish how the information is accessed. Using an advanced key-based solution that has a patented keyway system is a sufficient basic solution.

Such a system allows administrators to keep track of key holders and significantly reduces problems associated with unauthorized key duplication.

A more popular and advanced security option is an electronic access control system. Electronic security comes in a variety of credential and network options, from offline pincode locks on a door to wireless locks and card readers. With an electronic solution, administrators can restrict user access to specific days and times, as well as log user entry. This audit trail can be used by administrators to help ensure compliance.

About the Author

Matt Conrad is the director of healthcare markets for Ingersoll Rand Security Technologies.

Featured

Most   Popular

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities