|
IFModules, a division of iguanafarmGroup, has reviewed the HIPAA
Requirements (45 CFR Parts 160, 162, and 164) of February 2006 and
has developed policies and procedures to ensure that IFM eMail Manager,
an email management hosted service, is compliant in the role of business
associate.
As a business associate, IFModules provides hosted email
management services for our customers, who may include Health Care
Providers. IFModules has policies and procedures in place to ensure the
protection, integrity and confidentiality of any Private Health Information
(PHI) within IFModules possession.
During the normal course of operations, IFModules may maintain secured,
active PHI on behalf of our customers.
About HIPAA
The Health Insurance Portability and Accountability Act of 1996
(HIPAA) outlines minimum standards which need to be met to insure
the confidentiality, privacy and security of health care information
in the Internet environment. HIPAA requires that health organizations
that store or transfer patient data over the Internet be HIPAA compliant.
For more information in HIPAA and it's governing body, visit
www.hhs.gov/ocr/hipaa/.
|
Personnel Policy
All IFModules personnel that come into contact with Private Health
Information (PHI) are required to sign a confidentiality agreement as
well as undergo HIPAA Privacy Awareness and HIPAA Security Awareness
training, assuring that such data will not be disclosed.
Data Policy
All PHI that is received by IFModules, in the course of our normal
operations, is stored in a secured, safe location.
Subcontracting Policy
IFModules executes HIPAA Agreements with its sub-business associates,
which state that IFModules will comply with all relevant HIPAA requirements
in the course of maintaining health care information systems.
Operational Policy
IFModules uses acceptable levels of encryption and passwords to protect
PHI that is stored on our servers on behalf of IFM eMail Manager customers.
|
