By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
Health Works CollectiveHealth Works CollectiveHealth Works Collective
  • Health
    • Mental Health
    Health
    Healthcare organizations are operating on slimmer profit margins than ever. One report in August showed that they are even lower than the beginning of the…
    Show More
    Top News
    UV damage to eyes
    Warning Signs of Long-Term UV Damage to Your Eyes
    December 9, 2021
    degree for healthcare job
    The Ultimate Healthcare Recruiting and Staffing Guidebook
    March 21, 2022
    medicare part d benefits
    Everything that You Need to Know About Medicare Part D
    August 15, 2022
    Latest News
    Beyond Nutrition: Everyday Foods That Support Whole-Body Health
    June 15, 2025
    The Wide-Ranging Benefits of Magnesium Supplements
    June 11, 2025
    The Best Home Remedies for Migraines
    June 5, 2025
    The Hidden Impact Of Stress On Your Body’s Alignment And Balance
    May 22, 2025
  • Policy and Law
    • Global Healthcare
    • Medical Ethics
    Policy and Law
    Get the latest updates about Insurance policies and Laws in the Healthcare industry for different geographical locations.
    Show More
    Top News
    Should Non-Physician PhDs be Called “Doctor” and be Practicing Medicine?
    November 1, 2011
    Medicare Now Provides Coverage for Obesity Treatment and Prevention
    December 3, 2011
    CMS to Announce ACO Regs Soon
    August 26, 2017
    Latest News
    Preventing Contamination In Healthcare Facilities Starts With Hygiene
    June 15, 2025
    Strengthening Healthcare Systems Through Clinical and Administrative Career Development
    June 13, 2025
    Building Smarter Care Teams: Aligning Roles, Structure, and Clinical Expertise
    May 18, 2025
    The Critical Role of Healthcare in Personal Injury Recovery: A Comprehensive Guide for Victims
    May 14, 2025
  • Medical Innovations
  • News
  • Wellness
  • Tech
Search
© 2023 HealthWorks Collective. All Rights Reserved.
Reading: The Impact of HITECH & HIPAA on Data Centers
Share
Notification Show More
Font ResizerAa
Health Works CollectiveHealth Works Collective
Font ResizerAa
Search
Follow US
  • About
  • Contact
  • Privacy
© 2023 HealthWorks Collective. All Rights Reserved.
Health Works Collective > Uncategorized > The Impact of HITECH & HIPAA on Data Centers
Uncategorized

The Impact of HITECH & HIPAA on Data Centers

onlinetech
Last updated: April 27, 2012 9:18 am
onlinetech
Share
0 Min Read
HIPAA Compliant Data Centers White Paper
SHARE

HIPAA Compliant Data Centers White PaperOur HIPAA hosting and HIPAA compliant data center white paper provides a description of a HIPAA Compliant Data Centers White PaperOur HIPAA hosting and HIPAA compliant data center white paper provides a description of a HIPAA compliant data center IT architecture, contractual requirements, benefits and risks of data center outsourcing, and vendor selection criteria. Section 2.0 discusses the impact of HITECH and HIPAA on data centers:

Protecting the confidentiality, integrity, and availability of electronic protected health information (ePHI) is the essence of the HIPAA Security Rule1. Since data centers typically store, transmit, or process ePHI, they must comply with the HITECH standards and citations to meet HIPAA compliance. The same risk analysis, administrative safeguards, physical safeguards, technical safeguards, and ongoing due diligence apply just as much in the data center as in a provider’s facility.

While there is some debate about the responsibilities of business associates for the protection of ePHI, all indications point toward business associates being held as responsible as covered entities. Consider the latest notice of proposed rulemaking that speaks to the extension of responsibilities from covered entities to business associates:

As with the Privacy Rule, the Security Rule requires covered entities to have contracts or other arrangements in place with their business associates that provide satisfactory assurances that the business associates will appropriately safeguard the electronic protected health information they receive, create, maintain, or transmit on behalf of the covered entities.

Moreover, both covered entities and business associates should bear in mind that prosecution by the Office of Civil Rights (OCR) under HITECH is not the only legal concern. The last year has witnessed an increase in state and consumer lawsuits against both covered entities and business associates. In January 2012, Minnesota Attorney General filed a lawsuit against Accretive Health, for failing to protect the confidentiality of over 23,000 patient healthcare records.

More Read

Mass Digitization Threatens the IT Industry
Benefits of Private Cloud Computing: Compliant & Cost-Effective
HIPAA Hosting Q&A with a Certified HIPAA Practitioner & Security Specialist
Diagnosing Patient Dissatisfaction: 5 Top Causes
How to Get a Job in HealthCare IT When You Don’t Have Specific Experience

HIPAA Compliant Data Centers White Paper

The safest and most diligent practice to protect ePHI is to ensure that the same policies, risk management, safeguards, and ongoing compliance governance standards are followed no matter where ePHI resides. This means that data centers, whether in-house or outsourced, need to fully embrace complete responsibility for ePHI.

In the areas of administrative safeguards, such as ongoing HIPAA awareness and training for all employees, healthcare providers tend to be stronger. In the areas of technical safeguards and PHI availability, professional data center companies that invest extensively in redundant facility infrastructure and security may be the safer bet.

Ideally, either a healthcare provider would have infinite resources to build and maintain multiple, high-availability data centers or a data center hosting business associate would have a thorough understanding of HIPAA compliance including a HIPAA security risk analysis and management, policies, training of all employees, and ongoing HIPAA compliance audits. While both ideals exist, they are in the minority.

In these cases, the weighing of the pros and cons falls back to the risk analysis and management to choose the best option that will maintain ePHI confidentiality, integrity, and availability.

HIPAA White Paper Download

Read more in our free HIPAA Compliant Data Centers white paper – download it today!

References:
HIPAA Security Series: Basics of Risk Analysis and Risk Management (PDF)
U.S. Dept. of Health and Human Services, Federal Register Part II
Attorney General Swanson Sues Accretive Health for Patient Privacy Violations

TAGGED:HIPAA compliance
Share This Article
Facebook Copy Link Print
Share

Stay Connected

1.5kFollowersLike
4.5kFollowersFollow
2.8kFollowersPin
136kSubscribersSubscribe

Latest News

healthcare facilities
Preventing Contamination In Healthcare Facilities Starts With Hygiene
Global Healthcare Infographics
June 15, 2025
from gut to glow
From Plate to Wellness: How Everyday Foods Nourish Your Body Inside and Out
Dental health Infographics Specialties
June 15, 2025
beyond nutrition
Beyond Nutrition: Everyday Foods That Support Whole-Body Health
Health Infographics
June 15, 2025
Transcranial Magnetic Stimulation (TMS) Therapy
How TMS Therapy Helps with Treatment-Resistant Mental Illness
Mental Health Therapies
June 13, 2025

You Might also Like

Provider Identities and Information Sources : Using IT to Facilitate Information Therapy

September 23, 2011
Google's 2-Step Verification
Uncategorized

Two-Factor Authentication to Meet HIPAA and PCI Compliance

April 26, 2012

NIST Recommendations for Security in the Outsourced Cloud

May 3, 2012
HIPPA compliance
Health

How Medical Office Staff Can Make Your Practice HIPAA Compliant

October 29, 2021
Subscribe
Subscribe to our newsletter to get our newest articles instantly!
Follow US
© 2008-2025 HealthWorks Collective. All Rights Reserved.
  • About
  • Contact
  • Privacy
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?