× Welcome to SGCyberSecurity forum!

Feel free to discuss any topics relating to cybersecurity with the rest of the security community in this forum.

Topic-icon What does it mean to be a HIPAA Compliant Datacenters?

3 years 2 months ago #23654 by Fiona-Smart-google

Can anyone tell me about - What does it mean to be a HIPAA Compliant Datacenters?

Please Log in or Create an account to join the conversation.

3 years 2 months ago #23655 by Toby-Robinson-google

Hello Fiona,

HIPAA Compliant Datacenters are an essential part of the Healthcare Industry. With the increasing amount of regulations and penalties imposed by the Department of Health & Human Services and the Office of Civil Rights for PHI breaches, there is now a growing trend of outsourcing services to Datacenter and Hosting service providers in the industry.

Since Datacenters directly deal with ePHI i.e. store, process and transmit PHI on behalf of healthcare institutes, they fall in the scope of HIPAA Regulation. The HIPAA Omnibus Rule holds all third-party including contractors and sub-contractors accountable for a data breach that may occur. This does not just include Business Associates but also subcontractors, entities who transmit or deal with protected health information (PHI).

Earlier all the liability was assumed by the covered entity and not the business associates who directly or indirectly entered into a service agreement with the covered entity. So, Datacenters engage or deal with ePHI they are required to comply with the HIPAA Regulation and establish the same level of administrative safeguards, physical safeguards, technical safeguards, and conduct ongoing due diligence as the Covered Entity (Healthcare Institutes).

Visit this link to know more: www.vistainfosec.com/blog/what-does-it-m...mpliant-datacenters/

Please Log in or Create an account to join the conversation.