Speech 2 Scribe
CrimsonSoft
   
HIPAA compliance > Security
  HIPAA Compliance
Security
  Privacy

Data Security and compliance with statutory requirements are critical to medical transcription solutions. S2S maintains highest standards of security to prevent intrusion and unauthorized used of data. S2S is HIPAA-compliant.

The S2S Data Center adopts stringent security guidelines. Security audits are periodically conduct to ensure compliance at all levels. Following is an excerpt from the detailed policy document which is available for reference.

The mission of the Security Policy is to establish defined responsibilities, actions and procedures to secure S2S Data Center computers, communication and network environment through Information Systems and Physical access controls.

This security policy was created with underlying to ensure the objectives that follow:

  • To secure the organization, it's resources and IP from external hacks, access and damage including compromise of confidential information
  • Strengthen internal security to prevent misuse of resources as well as implement access control mechanisms that undermine the above points
  • Ensure BS7799 and HIPAA compliance
  • Ensure patient privacy
This security policy document encompasses the following areas:
  • Network Security
  • Physical Security
  • Application Security
  • Data Security
This document attempts to set the policy and guidelines as the framework against which audits will be conducted to ensure compliance.

Additionally, this policy provides direction to ensure Federal regulations are followed, and legal authority granted, for the dissemination and use of encryption technologies.

Data Encryption

HIPAA's Security Standards require that Patient Health Information is protected and data is safeguarded from intrusion.

S2S adopts advanced encryption technologies to safeguard files containing sensitive information. Patient health information is stored after encryption. Dictation voice files are also stored after encryption and these can be played only on S2S proprietary platform that have keys for decryption. All data is encrypted during transmission of information from the data center to the transcription system at customer site.



 
       
     
 
Home About Us Products Case Studies Infrastructure & Compliance Support Services Contact