HIPAA compliance
The Health Insurance Portability and Accountability Act (HIPAA) requires any organization entrusted with Protected Health Information (PHI) to safeguard this data against deliberate or inadvertent misuse or disclosure.
Download HIPAA datasheet
Key facts and data security requirements you should know
- HIPAA doesn't just pertain to healthcare companies. It affects any employer (including government agencies) that stores, manages, or communicates Protected Health Information
- Under HIPAA, organizations must protect against any reasonably anticipated threats and provide security in the transfer of patient information
- HIPAA violations open the door to both civil and criminal penalties
- Civil penalties are $25,000 for each compliance standard violated. With 30 standards, financial loss can approach $750,000.
Proven HIPAA data loss prevention
| ANI uses Vontu Network Prevent and email encryption to automatically enforce HIPAA data security policies |
|---|
|
American National Insurance (ANI) Company needed to proactively stop the loss of policyholder data and other privacy-related information to comply with HIPAA. ANI chose Vontu Network Prevent to accurately detect PHI data in violation of policy and block it from leaving the network. With Vontu Network Monitor, ANI monitors email, web, FTP, and IM communications for HIPAA policy violations. Also, with Vontu Network Prevent, ANI automatically routes email messages that contain PHI and are acceptable to leave the network to PGP Corporation's PGP Universal™ for encryption thereby ensuring HIPAA compliance. Read more about American National Insurance and HIPAA Compliance. » |
How Vontu solutions demonstrate HIPAA compliance
Vontu solutions provide comprehensive HIPAA data loss prevention for any organization that stores and/or transmits PHI. Advantages include:
- Pre-defined HIPAA Policy Template with Vontu's TrueMatch™ detection suite for the highest accuracy in the industry and over 24,000 keywords
- Discover and protect PHI data exposed on file servers, databases, Microsoft SharePoint®, Lotus Notes®, Documentum®, LiveLink®, web servers, Microsoft Exchange®, and other data repositories
- Monitor and prevent PHI loss on the network including email, IM, Web, Secure Web (HTTP over SSL), FTP, P2P, and generic TCP
- Discover PHI data stored on the endpoint, such as desktops and laptops, and prevent this data from being inappropriately used, sent out, or copied to storage devices such as USB drives, CD/DVDs, or iPods
- Comprehensive audit support through HIPAA compliance reports and role-based dashboards
- Automatically enforce PHI data security policies with a centralized platform for detection accuracy, policy management and automated incident response, notification, workflow and compliance reporting, to help organizations change employee behavior and pinpoint compliance gaps in existing business processes
- Role-Based Access Control enables business units and departments to review and remediate only those PHI incidents relevant to their role and privileges.
Download the Eight Steps to Data Security Compliance whitepaper
Related Resources
Prudential Financial
case study
"Vontu DLP protects our corporate email and helps us identify and actively address potential exposures."Peter Kuzmiskas
System Technology Specialist,
Prudential Financial
Eight steps to data security compliance
A step-by-step guide to protecting customer and employee information in today's regulatory environment.
Three steps to protect confidential data on laptops
Learn how to avoid being part of the one-third of security breaches that occur due to laptop theft.
Seven steps to information protection
Read seven technology-centric best practices to protect intellectual property.
PCI Compliance: Secure valuable cardholder data
Safeguard the personal financial data of cardholders and ensure compliance with the PCI's requirements.