Careers
Enquiry
Search
Home
Sitemap
Contact Us
About Us
Services
Training
Outsourcing
Solutions
 
White Papers
Customer Services
News Letters

Health Insurance Portability and Accountability Act (HIPAA)
Legislative Summary
The goal of this legislation is to enable the movement of health information among health-related organizations in a protected manner. It includes various stringent privacy and security protections including limits on sharing and use of encryption. HIPAA applies to US healthcare providers / health insurers and their business associates. If your financial institution has an employer-sponsored health care plan, this legislation also applies to you.

The Administrative Simplification section of HIPAA mandates a new security policy to protect an individual's health information, while permitting the appropriate access and use of that information by healthcare providers, clearinghouses and health plans.

Online Applicability
Entities covered by the act must:
Provide a comprehensive privacy notice on websites collecting personal health information (PHI)
Ensure that all collection of personal health information online is appropriate and secure
Ensure that personal health information is not being passed to 3rd parties in contravention of sharing rules
Protect against any reasonably anticipated:
threats or hazards to the security or integrity of the information
unauthorized uses or disclosures of the information
Ensure that personal health information is not being passed to 3rd parties in contravention Provide technical security services to guard data integrity, confidentiality and availability
Ensure that personal health information is not being passed to 3rd parties in contravention Establish audit control mechanisms to record and examine system activity

Our Capabilities
We provide software and services designed to help organizations improve the business benefit of their websites and mitigate risks associated with doing business online. Our solutions are designed to help organizations enable compliance with legislation including HIPAA.

We can:
Discovers actual web privacy practices to assist accurate creation of privacy policy
Confirms that privacy policy provided at all information collection points
Identifies locations where personal health information is collected and ensure appropriate controls in place
Identifies locations where website may inadvertently be sharing information with 3rd parties
Provides 24/7 automatic defense against reasonably anticipated and unknown threats or hazards
Blocks suspicious activity launched against a web application by creating dynamic security policies
Provides audit control mechanisms to record and examine system activity
Logs all requests against the Web server
Examines the output of the application source code
Identify where risks exist due to Web application vulnerabilities, such as cross-site scripting, SQL and XPath injection, forceful browsing, poison null attacks, etc.
Providing 24/7 automatic defense against any anticipated threats or hazards to the security or integrity of customer records
Blocking suspicious activity launched against a Web application by creating dynamic security policies
Automating security processes, ensuring security architecture is updated to protect against the latest vulnerabilities and hacking techniques
This information is invaluable for firms with large enterprise websites who need an automated solution to enable ongoing monitoring and compliance reporting.
Copyright © 2006 OSTFOLD Software Pvt. Ltd. All Rights Reserved.
Contact our Customer Service Learn More about White Papers Subscribe our Newletters Learn more about our Real Time Embedded Solutions Learn more about our Business IT Solutions