Your EHR Does Not Make You HIPAA Compliant

Improving Patient Outcomes through Technology
July 17th, 2018
You use an EHR right?  Sure, HIPAA mandates it and it actually made your life easier and organization more productive.
You think you are safe from HIPAA violations… You’re WRONG!
Did you know that even our own Air Force and NAVY hospitals are being threatened with multi million dollar fines due to HIPAA violations? 
In fact, a recent Department of Defense audit on the military groups confirmed, “In addition, ineffective administrative, technical, and physical security protocols that result in a violation of the Health Insurance Portability and Accountability Act (HIPAA) of 1996 could cost the MTFs [military treatment facilities] up to $1.5 million per year in penalties for each category of violation.”
So with giant government agencies like the U.S. Air Force under attack how do you protect your organization?
Rely on a partner who can navigate these waters for you…
Imagine you are called away from your desk and you do not have a simple inactivity screen lock in place on your workstation.  Next, someone walks by and accesses your computer because it is unlocked and open to the world. Now you may be thinking I was only gone for a few minutes, the truth is that it takes only a second for someone to walk by and see something they shouldn’t and a few more to start a data transfer, yes email is data transfer. 
So even if government and military hospital EHRs can be breached and fined millions, yours can too. 
How big of a HIPAA fine could your company withstand?
As daunting as maintaining compliance seems it can be easy to keep within HIPAA standards at your organization.  And as an added benefit your new safeguards and procedure typically pay for themselves 3x over due to increased employee productivity.
Be familiar with HIPAA or,
Work with a partner that is.  Specific and practical working knowledge of  the HIPAA Rules which deal with technology used in health care is essential. 

A robust security platform like EverShield should include:

   • Provides secure remote access to critical applications on a secure private network.
   •A BAA (Business Associate Agreement).
   • Multiple secure communications modalities within one app to avoid user errors.
   • Data not stored or cached in third party data centers without a BAA in place.
   • Encryption for data in transit and data at rest.
   • Ability to meet state by state HIPAA data retention requirements.
These are just a few of the requirements to comply with HIPAA Rules.
Not sure how to get started?  Email us to receive the 2018 Benefits of Secure Communications now!
Asgard Managed Services welcomes your feedback
to reach us call: 888-941-9941 or
email us at or
visit us at:
Copyright 2018 Asgard Managed Services – All Rights Reserved


You may also like