6 Critical Questions For Your Healthcare Cloud Vendor
Protecting Data Security Is Vital
February 26, 2013
Views
Security is always a concern with any cloud service, but the sensitive nature of personal health information makes security for cloud storage of medical records, including digital medical images, especially critical. Cloud services can actually be more secure than your own local server, but it depends on the vendor’s standards and practices for protecting the imaging data.
Here are six essential questions healthcare providers need to ask when evaluating cloud vendors:
1. Do you adhere to federal healthcare privacy and security policies?
The vendor should assure that their cloud-based storage solution supports and helps providers follows federal standards and regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health (HITECH) Act.
2. How do you separate and secure data in a multi-tenant environment?
Data should be secured based on group and individual permissions, so medical images from Healthcare Group A are not accessible to Healthcare Group B.
3. Do you provide multiple levels of security?
The vendor should have a multi-level procedure for protecting the organization’s imaging data at different levels and from various threat, and a detailed plan for disaster recovery.
4. Are you routinely audited by a third party?
A regular audit of the vendor should go beyond the scope of a SAE16Audit, and encompass security architecture, policies, requirements, staff and network performance.
5. How do you handle training to ensure security internally?
Your vendor should have security training protocols in place to train staff as security risks evolve — including on HIPAA.
6. Do you execute a BAA (Business Associate Agreement)?
Make sure your healthcare cloud services vendor will help ensure PHI (Protected Health Information) is not disclosed and is protected.
By carefully analyzing each vendor’s strategies, healthcare organizations can better compare their own internal capabilities to cloud vendors and make the right decision to scale their medical imaging management in the cloud. Is your organization considering a move to the cloud for storage? What questions are you asking?
AT&T
Networking Exchange : Topics : Cloud : 6 Critical Questions For Your Healthcare Cloud Vendor
6 Critical Questions For Your Healthcare Cloud Vendor
Protecting Data Security Is Vital
By Barb White
Barb White
Director of Healthcare Solutions, AT&T
Find me on:
Here are six essential questions healthcare providers need to ask when evaluating cloud vendors:
1. Do you adhere to federal healthcare privacy and security policies?
The vendor should assure that their cloud-based storage solution supports and helps providers follows federal standards and regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health (HITECH) Act.
2. How do you separate and secure data in a multi-tenant environment?
Data should be secured based on group and individual permissions, so medical images from Healthcare Group A are not accessible to Healthcare Group B.
3. Do you provide multiple levels of security?
The vendor should have a multi-level procedure for protecting the organization’s imaging data at different levels and from various threat, and a detailed plan for disaster recovery.
4. Are you routinely audited by a third party?
A regular audit of the vendor should go beyond the scope of a SAE16Audit, and encompass security architecture, policies, requirements, staff and network performance.
5. How do you handle training to ensure security internally?
Your vendor should have security training protocols in place to train staff as security risks evolve — including on HIPAA.
6. Do you execute a BAA (Business Associate Agreement)?
Make sure your healthcare cloud services vendor will help ensure PHI (Protected Health Information) is not disclosed and is protected.
By carefully analyzing each vendor’s strategies, healthcare organizations can better compare their own internal capabilities to cloud vendors and make the right decision to scale their medical imaging management in the cloud. Is your organization considering a move to the cloud for storage? What questions are you asking?
Networking Exchange Blog
Get the latest posts delivered right to your inbox. [+]
Receive our daily or monthly email updates and keep current on all the hottest networking trends, perspectives and reports.
Networking Exchange Blog
Thank you for subscribing. Your alerts will be sent to . Be sure to add networkingexchange@attbusiness.com to your safe contact list.
You Might Also Be Interested In...
Networking Exchange Blog
Get the latest posts delivered right to your inbox. [+]
Receive our daily or monthly email updates and keep current on all the hottest networking trends, perspectives and reports.
Networking Exchange Blog
Thank you for subscribing. Your alerts will be sent to . Be sure to add networkingexchange@attbusiness.com to your safe contact list.