Wednesday, August 14, 2013

HIPAA Encryption Compliance Easier With AlertBoot Full Disk Encryption

I guess lots of folks are pushing up against the MU deadline on this one...


"The deadline to the Final Omnibus Rule is September 23, 2013," said Tim Maliyil, CEO and founder of AlertBoot. "Frankly, I'm a little surprised to find that HIPAA covered entities are contacting us so belatedly, especially as part of an evaluation group of competing solutions. With less than 50 days until the compliance date, most establishments with 100 computers or so might find themselves strapped for time in implementing traditional encryption solutions. Perhaps that's why we're seeing so much interest in AlertBoot, which has a track record of securing nearly 100 laptops in two weeks and over 1000 laptops in less than a month."

According to the US Department of Health and Human Services (HHS), "Protected health information (PHI) is rendered unusable, unreadable, or indecipherable to unauthorized individuals if"**: 

  •     An encryption algorithm meets 45 CFR 164.304 (the "definition of encryption");
  •     "Process or key that might enable decryption has not been breached "; and,
  •     "Decryption tools should be stored on a device or at a location separate from the data they are used to encrypt or decrypt"

No comments:

Post a Comment