New Meaningful Use Interim Standards Require Encryption Capabilities

New Meaningful Use Interim Standards Require Encryption Capabilities

Posted using ShareThis

Anybody building or implement EHR with Meaningful Use as a goal should consider MU and HIPAA as parallel objectives.  HIPAA compliance should not be new to anybody involved in delivering care to patients or those who fall under the definition of Business Associates.  Encryption requirement under HIPAA is pretty robust, though it is in some ways more lax than PCI requirements for handling credit card information (funny how that is the case…)  The policy and processes have to be in place whether you implement an EHR or not.

At the same time, the EHR itself needs to fulfill Meaningful Use requirements.  If you use a hosted EHR as a physician, you will want your vendor to give your assurances that they do not only meet MU but also HIPAA requirements.  Does that make sense?

Add to FacebookAdd to DiggAdd to Del.icio.usAdd to StumbleuponAdd to RedditAdd to BlinklistAdd to TwitterAdd to TechnoratiAdd to Yahoo BuzzAdd to Newsvine