An overview

Before we delve into this topic, a note: this article is not an exhaustive list of all that is required for HIPAA compliance.  You may decide to contact an attorney or Privacy Officer to help you examine each rule thoroughly and put an action plan in place.  Our intention is to get you started with what you need to know to hit the ground running.

As a Mental Health or Medical Provider, you will be handling protected health information (PHI).  Under HIPAA rules individual practitioners are referred to as a Covered Entity because you transmit health information during your sessions.  SecureVideo would be known as your Business Associate, because we help carry out your health services.

Four rules apply to you.  Links are provided here should you want to delve in deeper:

  1. HIPAA Privacy Rule
  2. HIPAA Security Rule
  3. HIPAA Enforcement Rule
  4. HIPAA Breach Notification Rule

You will need to follow all these rules above.  Consider the first two proactive and the remaining, reactive.   The first two you must follow and create action items around.  If there is a security breach, as per the HIPAA Breach Notification Rule, you will need to notify your clients immediately following a security breach of their PHI.  The HIPAA Enforcement Rule kicks in if you do not comply to the other three rules.

In a nutshell, HIPAA asks you to do the following:

  • Establish protections to safeguard PHI.
  • Fairly check that sharing and use of PHI to a minimum, only enough to accomplish the expected outcome.
  • Establish your Business Associate Agreements (BAAs) to ensure that your service providers will also preserve PHI and only use it properly.
  • Put your policies and procedures in place to restrict who has access to PHI.  Enroll yourself and your employees in a training program around PHI safety.  Periodically review your procedures to assess how you are maintaining your PHI secure.

Please check in for more articles related to HIPAA laws in the near future.  Do you have a specific question?  Please ask!  We may be able to help.…

Read More

It’s been another month of mostly internal upgrades, although we have two big external changes as well: the release of our API documentation and the expansion of our E-Documents feature.

Features/Enhancements:

  • Released our API documentation. SecureVideo’s RESTful API enables software-to-software integration with our HIPAA-compliant videoconferencing service, and the documentation can be found in this Support Center category. For more information about pricing, please call our sales line at (888) 200-7730, or e-mail us at info[at]securevideo.com.
  • Created a user interface for Enterprise accounts to manage their E-Documents, without needing to contact Support. (Click here for more information about our E-Documents feature.)

Fixes:

  • Fixed h1 and h2 headers in the Support Center.
  • Fixed blacklist settings to that Join/Login failures needed to be consecutive, not accumulative.

Got questions, comments, or suggestions for future changes? Let us know in the comments or by email, support[at]securevideo[dot]com!…

Read More