Purpose of this Notice
PrimeScribe respects the privacy of protected health
information and understands the importance of keeping
this information confidential and secure. This Notice
describes how we protect the confidentiality of the
protected health information we receive.
Health Insurance Portability and Accountability
Act of 1996 (HIPAA)
PrimeScribe maintains a comprehensive system to ensure
compliance with applicable provisions of the Health
Insurance Portability and Accountability Act of 1996
(HIPAA). Since our goal is to provide the highest
level of service to our customers and business partners,
we want you to know how PrimeScribe complies with
the HIPAA directives. Our HIPAA Privacy Policy contains
procedures addressing the protection, use and disclosure
of protected health information ("PHI"),
accounting of disclosures, access by individuals and
third parties to PHI, protection of PHI by contractors,
business associate agreements and training of employees.
How We Protect Personal Information
We treat personal information securely and confidentially.
We limit access to personal information to only those
persons who need to know that information to provide
support services to our customers. These persons are
trained on the importance of safeguarding this information
and must comply with our procedures and applicable
laws. We employ strict physical, electronic and procedural
security standards to protect personal information
and maintain internal procedures to promote the integrity
and accuracy of that information.
Security From The Ground Up
Pursuant to currently published HCFA policy pertaining
to transmittal of medical record information through
public information infrastructures (specifically the
Internet or WEB), PrimeScribe and its partners and
vendors have implemented a Virtual Private Network
(VPN) with strong encryption (DES-3), and SSL (secure
socket layer) 128 bit https web encryption.
The following data handling procedures are implemented
for all customers, transcribers, vendors, partners
and PrimeScribe:
- All data transmitted to and from our systems is
encrypted. This includes both our home-based Medical
Language Specialists as well as all of our customers'
transcriptionists.
- Customer access through the Internet is secured
with SSL log-in ID and password.
- PrimeScribe 's off-site medical language specialists,
employees, consultants, and contractors have software
VPN clients on their workstations. This software
is designed to run on remote workstation and provide
secure connections to corporate resources via the
Internet. This software also encrypts all of the
data that is returned to the national operations
hub.
- VPN components are configured for 168-bit encryption.
Confidentiality Through Strictly Enforced
Procedures
- Every employee with access to the system must
sign confidentiality agreements. Employee access
is regularly audited and reconciled.
- Every dictation / document is tracked throughout
the system to ensure proper handling and delivery.
- Patient sensitive information is systematically
purged from data systems and employee's workstations.
Disclosure of Personal Information
We may use or disclose protected health information
to the Food and Drug Administration ("FDA")
in connection with the reporting of adverse events,
product defects or problems, product tracking or for
other purposes as required by the FDA. We may use
or disclose protected health information during the
course of clinical research activities. We may also
disclose personal information as required by law.
Individual Rights to Access and Correct Personal
Information
We have procedures in place for individuals to have
access to protected health information, and procedures
in place to ensure the integrity of our information
and for the timely correction of incorrect information.
Further Information
PrimeScribe may find it necessary to revise and update
its HIPAA Privacy Policy from time to time as changes
to the privacy regulations emerge, and will communicate
any such changes to our customers and business partners
|
