Login 

Call Us Now:

Weston Technology Solutions Blog

  • Home
    Home This is where you can find all the blog posts throughout the site.
  • Categories
    Categories Displays a list of categories from this blog.
  • Tags
    Tags Displays a list of tags that have been used in the blog.
  • Archives
    Archives Contains a list of blog posts that were created previously.
Subscribe to this list via RSS Blog posts tagged in Compliance

New Breach Notification Laws May Affect You

Posted by on in Security

hipaaThe State of Oregon (where our main office is based, though we do serve Anchorage and Spokane, as well) has updated its data breach notification laws. If you live in Oregon and your personal information is exposed in a data breach (defined as “an unauthorized acquisition of computerized data that materially compromises the security, confidentiality or integrity of personal information that a person maintains”), notifications now have to be done with 45 days instead of the 60-days required by the federal government in the HIPAA Breach Notification Rules.

Tagged in: Compliance HIPAA

Get a HIPAA BAA from Microsoft for Office 365

Posted by on in How To

Years ago we posted a tip on how to get your business associate agreement (BAA) from Microsoft if you used their Office 365 services. The process has changed a bit now, so we decide to revisit that topic in a new article: Here’s how you get your BAA for Microsoft’s online services.

Cyber Threat Protection As a CompleteCare client, you can rest assured that we are doing everything we can to protect your network from security threats and problematic malware. We were asked by a client recently what we do to help protect them from cyber threats, so we figured we’d share a bit of our multi-layered approach here (these are the major items but not the only items).

hipaaAnother story that is becoming all-too-common. From HIPAA Journal: “Lost Laptop Sees PHI of 3,725 Veterans Exposed.”

What is the moral of this story for your health clinic?

  1. Properly Decommission Computers: Any device, when it’s taken out of production and had any sort of access to PHI needs to be completely wiped and properly decommissioned. That means doing a thorough scrubbing or destruction of the data on the hard drive of the computer. Refer to 45 CFR 164.310(d)(2)(i) and 45 CFR 164.310(d)(2)(ii) for more information.
  2. Encrypt All laptops: The data on all laptops should be encrypted at all times as it’s your Get Out Of Jail Free card. If a laptop is lost with properly documented fully encrypted data, there is no way for it to be recovered and it does not have to be reported as a breach.

Need help with your technology and HIPAA? Call us today to learn about our HIPAA services including disk encryption and annual risk assessments

Mobile Device ManagementAs a business owner, you’re likely familiar with locking down the data on your corporate-owned computers. With technologies like disk encryption and strong password policies and other security measures, you can assure that it will be pretty difficult to access data that shouldn’t be accessed.

But what about those computers in your employees’ pockets, the fancy smartphones they carry around? Have they ever used them to access company email, files, documents, calendars, or contacts? It is certainly very convenient and can increase productivity to have access to that data with you at all times. What would happen if they were to lose that phone or if the employee left? Would your data or access to your company’s data fall into the wrong hands?

Not if they were secured by WestonSecureMobile, powered by IBM MaaS360. Previously, if you wanted full control of your employee’s mobile access, you’d have to buy them all phones and lock them down. With WestonSecureMobile, you can allow them to bring their own personal devices and you won’t have to worry.

WestonSecureMobile uses industry-leading technologies to allow your employees to access company resources on their mobile devices securely without putting their personal or your corporate data at risk. WestonSecureMobile is a suite of secure applications that gets installed on your phone that keeps your corporate data access secure and separate from the personal data on your phone. It provides centralized management of the devices, allowing you to selectively control access to corporate data, much as you would with your Windows Server back at the office.

If a phone is lost or an employee leaves, you can wipe and lock down portions of the phone that were accessing that data so the user’s personal data is left alone. It also allows tracking of the devices if they are lost or stolen.

It’s certainly cheaper to allow your employees to bring their own devices. With WestonSecureMobile, you can be assured that bringing their own device won’t compromise your company’s data or put it at risk. Contact us today for more information and pricing.

Mobile? Grab this Article!

QR-Code