The modern hospital has begun to look like a secure facility such as the Pentagon or the White House. New hospitals are being built with ID badges that are needed to activate the elevator, access patient rooms or utilize the OR and catheter lab. Children's Hospitals are being built to protect our most precious resource while rivaling Fort Knox in physical security measures taken. Security guards are everywhere and the staff is on edge.
Overlay the extreme burden that HIPAA compliance places on securing patient data and patient’s privacy, and our hospitals face a physical, network and cyber-security challenge equal to that of our national intelligence communities. Most challenging of all, penalties for violating HIPAA now rival those imposed on violators accused of treason.
What does HIPAA compliancy mean? Taken literally, it means that only the patient and his/her health care provider should be able to access confidential patient records and real-time patient data. It means that even the presence of a patient in a healthcare facility should be protected information. And, it certainly means that unauthorized physical or network access to the identification of the patient or their records should be an impossibility.
How can the existence of a patient and knowledge of their clinical status be separated from so many prying eyes from outside of the hospital and from within? Better yet, how can this be done without a staff of full-time IT administrators constantly updating and changing authorization privileges so that only the nurse or physician assigned to the patient can view the patient’s records, stored data and real-time physiologic information?
How do most hospitals handle this conundrum? They don’t. Put simply, almost any physician or nurse in almost any hospital can view any patient’s data at any time. This is a major violation of HIPAA punishable by many years in jail and much money. We offer a way out of this frustrating and expensive dilemma. Our Identity Management Governance Server, combined with our DNA™ product, allows very complex security environments to be managed simply and dynamically by one person or through the formation of a virtual quorum. You decide.
Prodentity offers the ability to integrate all of your security by allowing DNA™ to simultaneously manage physical access, biometrics, network security, your EMR, telemedicine initiatives and much more. Please take a moment to review the five security scenarios we address listed under the intelligence community section of this web site. Every scenario has a counterpart within the healthcare industry that, if addressed in a comprehensive manner, can allow hospital administration to rest easier knowing that everything possible has been done to be as fully compliant as possible, to have safeguarded the patients and to have protected the staff from physical and litigious threats.