HIPAA comprises a set of physical, network, and process security standards that must be followed by any entity that handles patients’ protected electronic health information (ePHI). The HIPAA Security Rule requires that three types of safeguards—administrative, physical, and technical—be implemented in order to safeguard ePHI.
The security assessment process entailed a detailed review in several areas. These included, but were not limited to: policies and procedures; network and data flow diagrams; physical and environmental security; disaster and data recovery backup processes; vulnerability management; penetration testing; encryption; system hardening standards; patch management; access control; data storage, logging and auditing; security monitoring; and incident response.
“At E-Complish, we are committed to ensuring the security of ePHI handled by our customers—and, just as importantly, helping our customers to do the same,” said Greg Gaines, E-Complish’s director of compliance and customer service. “Our adherence to the HIPAA Security Rule and our diligence in maintaining HIPAA compliance allow us to fulfill this commitment. We will continue to do so going forward.”
Since 1998, E-Complish has provided merchants around the country with top online and over-the-phone payment processing services that keep customer data secure and make it easy to manage transactions. E-Complish uses the latest ground-breaking technology to design payment processing services that deliver ease of use, accuracy, dependability, personalization capabilities and automation that improves productivity.
E-Complish Press Contact
888-847-7744, ext. 205