We get many questions regarding MySQL databases and HIPAA website compliance. These range from confusion over the auditing of access to stored ePHI to what HIPAA’s data encryption requirements actually are to how HIPAA applies to MySQL databases. Next, we will attempt to address some of these subtle questions.
You buy a HIPAA compliant web hosting infrastructure. You configure your web site to send out email messages in the simplest way, e.g. through PHP mail, or some other generic and standard mechanism. You think you are all set — but you are not. HIPAA compliant web hosting services provide a server infrastructure that allows […]
Twice in the past few weeks I have received appointment reminders or scheduling information from doctors via email — via insecure, non-HIPAA-compliant email. An email message contains identifying information: my email address and my name. The appointment email messages also contain information about “the past, present, or future provisioning of health care to an individual” […]
FTP, the “File Transfer Protocol” has been around almost since the inception of the Internet. As anyone with a web site knows, it permits files to be easily uploaded to and downloaded from servers. It is built into every kind of web site authoring software and even into most web browsers. Unfortunately, FTP suffers from […]
For a deep dive, see our white paper: Securing WordPress WordPress is an extremely popular content management system for both blogging and creating web sites. It’s popular because it is quick to set up, easy to administer, has a very large supported base of add-ons, and looks good. As a result, many LuxSci customers use […]
