|
|
Edited by Erik Kangas, PhD, President of LuxSci
|
Bringing you news, solutions and insider insight on LuxSci and our digital life
Posts Tagged ‘hipaa’
Monday, June 1st, 2009
 LuxSci’s High Volume Outbound Email Sending Service, released earlier this year, has been a notable success. Our service permits the sending of legitimate bulk email messages and also provides reliable “smarthost” services. However, the offering is restricted to SMTP services and does not include the many outbound email processing tools present in LuxSci’s Premium Email service. I.e. see LuxSci Outbound Email: 5 Sending Options Compared!
Since High Volume Mail was offered, we have had many requests to send HIPAA-compliant bulk outbound email, i.e. newsletters and notices that contain protected health information (PHI) . In such cases, SecureLine should be used to encrypt the outbound email in a way that can be opened by any recipient, but which is still secure. Unfortunately, integration with SecureLine is not a feature of our Basic High Volume service.
LuxSci has responded by releasing Premium High Volume Outbound Email Service. This is essentially Premium Email hosting with:
Read the rest of this post »
Tags: bulk mailing, high volume, hipaa, outbound email, phi, secureline, smtp
Posted in New Feature Announcements
No comments »
Thursday, April 9th, 2009
 People have asked us if sending an email to someone via BCC (Blind Carbon Copy) is HIPAA-compliant. For example, a doctor’s office sending a newsletter to its patients via BCC. The presumption is that because when a message is sent via BCC, the recipient’s email address is not visible in the message that there is no way to identify the individual(s) to whom the message was sent and thus the messages do not contain any “personally identifiable health information” that is protected by HIPAA.
The short answer is “BCC is not good enough“. For the long answer, read on.
Read the rest of this post »
Tags: bcc, blind carbon copy, hipaa, newsletter, phi, privacy
Posted in Business Solutions, LuxSci Library: HIPAA
No comments »
Tuesday, March 17th, 2009
 The situation: your organization needs to collect information from clients through from(s) on your web site, but that information is sensitive. So, you need to be absolutely sure that the information is transferred from the users of your web site to you in as secure a fashion as possible. This means that
- no one but you (or optionally your authorized staff) can intercept or read the information,
- the information is never stored insecurely anywhere
- the information cannot be modified without your knowledge
Why would this high level of security and privacy be necessary? There are many cases where they are essential; some of these include:
Read the rest of this post »
Tags: encryption, hipaa, pgp, phishing, s/mime, secure, secure email, secure web form, ssl, ssl certificate, web form, web site
Posted in AAA Featured Articles, LuxSci Library: HIPAA, TechNotes
No comments »
Monday, March 16th, 2009
Performing daily business transactions through electronic technologies is an accepted, reliable and necessary tool across the nation’s healthcare sectors. Therefore, electronic communications have become a standard in the healthcare industry as a way to conduct business activities that commonly include:
- Interacting with web-savvy patients;
- Real time authorizations for medical services;
- Transcribing, accessing and storing health records;
- Appointment scheduling; and
- Submitting claims to health plan payers for payment of the services provided.
Read the rest of this post »
Tags: access control, addressable, audit controls, authentication, covered entities, email security, email security rule, encryption, ePHI, Health Insurance Portability and Accountability Act, heathhealthcare, hipaa, integrity, phi, privacy, protected health information
Posted in AAA Featured Articles, LuxSci Library: HIPAA, TechNotes
1 Comment »
Friday, March 6th, 2009
 LuxSci offers solutions for secure and HIPAA compliant email and web services, so we are often asked about secure FAXing.
Many organizations, especially in the healthcare industry, have an urgent need to send important and sensitive information, like protected health information (PHI), to organizations via facsimile. Why? Because this is how it has always been done, and everyone is “set up” to be able to handle FAXes quickly and efficiently.
However, with HIPAA security regulations ever-present, our clients are concerned that their use of FAX is complaint, similar to making sure that their email and web sites meet HIPAA security standards.
Can data sent via FAX be “secure enough” for HIPAA?
Read the rest of this post »
Tags: document, facsimile, fax, hipaa, hipaa compliant, hipaa security, phi, phone, protected health information, Safeguards Principle, secure, secure fax
Posted in LuxSci Library: HIPAA, TechNotes
No comments »
Monday, February 9th, 2009
 Guaranteeing that information sent via email remains confidential can be a tricky business. Whether you’re in health care governed by HIPAA, education, or commerce, your customers and correspondents must be able to quickly and easily send your messages and attachments securely — no matter what email service they may have.
Solution?
With the LuxSci’s SecureLine SecureSend Portal, anyone with an email address can easily send any LuxSci SecureLine user secure emails for free.
Read the rest of this post »
Tags: attachments, email archival, free, hipaa, private labeled, secure attachments, secure email, secure send, secureline, securesend
Posted in Business Solutions
1 Comment »
Friday, February 6th, 2009
 LuxSci recently had the opportunity to speak with Nate Fitzgerald, Product Manager of Message Archiving at MX Logic. Nate has been with MX Logic for over 2 years and is responsible for their successful archival service. His insight has been invaluable in helping LuxSci get up to speed with all of the technical nuances of this service. We would like to share with you his knowledge and thoughts regarding the security, reliability, and utility of LuxSci’s Premium Email Archival service.
Read the rest of this post »
Tags: archival, auditable, compliance, contentfast, dual commit, email filtering, encrypted, google, hipaa, message archiving, mx logic, nate fitzgerald, postini, premium, redundant, sec, sec 17a-4, secure email, security, serialization, tamperproof, unlimited storage
Posted in AAA Featured Articles, LuxSci Insider, LuxSci Library: Insider Insight
No comments »
Tuesday, February 3rd, 2009
 Frequently, we are asked to verify if an email that someone sent or received was encrypted using TLS while being transmitted over the Internet. For example, banks, health care organizations under HIPAA, and other security-aware institutions have a requirement that email be secured at least by TLS encryption from sender to recipient. This can and should be locked down to ensure that the email message content cannot be eavesdropped upon. This check, to see if a message was sent securely, is fairly easy to do by looking the the raw headers of the email message in question. However, it requires some knowledge and experience. It is actually easier to tell if a recipient’s server supports TLS than to tell if a particular message was securely transmitted.
To see how to analyze a message for its transmission security, we will look at an example email message sent from Gmail to LuxSci, and see that Gmail does not use TLS when sending messages, even when it can. This indicates that Gmail is probably not a service to be used when you have any kind of encryption requirements.
Read the rest of this post »
Tags: bank, gmail, google, headers, hipaa, mx logic, private, received, secure, security, smtp, ssl, tls, transmission
Posted in LuxSci Library: Security and Privacy, TechNotes
No comments »
Thursday, January 29th, 2009
 Doctors and medical professionals are feeling a growing pressure to get their business online (i.e. even use of electronic prescriptions is being pushed). This includes making available protected health information to patients via a web site and collecting similar private information from patients or would-be patients. If doctors can show that they are using digital systems with their health care practices in a meaningful way by 2011, they may be eligible for some serious money (part of the proposed stimulus package — the Health Information Technology for Economic and Clinical Health Act (HITECH)).
However, where the health information of an identifiable individual is involved, the Health Insurance Portability and Accountability Act (HIPAA) is the official compliance document. So, what do these requirements mean and how can HIPAA be followed in the context of a website?
Read the rest of this post »
Tags: backup, disposal, electronic prescription, encrypted, escrow, form, Health Insurance Portability and Accountability Act, hipaa, hipaa-secure, patient, pgp, privacy agreement, protected health information, s/mime, secure ftp, secureline, ssl, web form, web site
Posted in Business Solutions, LuxSci Library: HIPAA
1 Comment »
Thursday, January 15th, 2009
.gif) Situation:
You collect private information on your website. Whether it’s health information that needs to be HIPAA-compliant, credit card numbers, or other confidential data, you need an easy and transparent way to protect the privacy of your visitors, from start to finish.
Solution:
LuxSci provides a secure web form for your website. Information is encrypted and emailed to you directly, so that you can access everything in your own email, but know that the data was secure from input to delivery.
Read the rest of this post »
Tags: decrypted, encrypted, end-to-end, hipaa, secure, secure email, secure web form, secure web site, secureline, ssl, web form
Posted in Business Solutions
1 Comment »
|
|
Receive automatic updates via email:
