The Health Insurance Portability and Accountability Act of HIPAA of 1996, was formulated to adopt standardized security measures that would protect sensitive patient data against unauthorized disclosure during electronic exchange. At Bharathi all our services are modeled according to the needs and requirements of the HIPAA and what’s more all our internal procedures for privacy and security not only meet the standards of HIPAA but exceed them.
All our facilities can only be accessed by authorized staff that is highly trained, and cognizant with regards to our services. The entry is controlled by a login key.
All our incoming ports are protected by filters and a firewall; system access is only offered to FTP and management ports. SSL supports the access of our server by our clients and only a valid login name and password is given access. Only encrypted files are sent across the internet. Even if the files are intercepted en-route, no one can decode them as they are configured around stringent security standards.
All our transcriptions process dictations and reports on workstations, connected to the company’s private network. No floppy drive, disc drives, peripheral drives. are present on these workstations, which prevents the download, transmission or printing of information. Recordable media are strictly prohibited within the premises of the facility.
All our employees sign a confidentiality agreement, and if asked for, we supply a copy of this agreement to our clients. Our computer systems have active security; monitored 24 hours a day, 7 days a week, with automated and real time network intrusion detection.
Emergency Contingency plans are in effect to facilitate continuity of operations. Hard-copy of the process documents related to clients / patients are disposed of with the shredding of the said documents.
This is just a brief cross-section of all the HIPAA guidelines that have been adopted as a part of our working processes. For more information you can contact us directly and learn more about our stringent data security and compliance procedures.