Verizon launches HIPAA-compliant eHealth cloud service

The hosted service includes a business associate agreement

By , Computerworld |  Cloud Computing, healthcare, hippa

Verizon's Enterprise Solutions group today unveiled a cloud services portfolio for the healthcare industry that it said can meet federal Health Insurance Portability and Accountability Act (HIPAA) requirements for safeguarding electronic health information.

Verizon is building its new SaaS and hosted services off its acquisition of cloud services provider Terremark and security services provider Cybertrust. Verizon is using two former Terremark data centers in Miami, Fla., and Culpeper, Va.

The new health-care-enabled services are: Colocation, managed hosting, public enterprise cloud and enterprise private clouds.

The Verizon data centers meet HIPAA security controls as well as other security requirements, according to Dr. Peter Tippett, chief medical officer and vice president of Verizon's health IT practice. Not only do the facilities meet HIPAA's physical security standards, Tippett said, but they comply with policy standards, meaning employees are trained in handling sensitive patient data.

The healthcare industry is notoriously wary of using third-party technology providers for fear of data breaches involving sensitive patient information. For example, only 16.5% of healthcare providers use any public or private clouds, according to research firm IDC. By comparison, 25.9% of financial services companies, another highly sensitive marketplace, use either public or private clouds, according to IDC.

Like a medical billing company that becomes a business associate of a healthcare provider, Verizon said it will sign a business associate agreement (BAA) with its customers showing it is HIPAA compliant.

"Healthcare is in the dark ages when it comes to the use of IT," Tippett said. "When your doctor refers you to another doctor [in another healthcare system], they typically dictate a letter and send it to the other doctor by mail. The only legacy technology that get a pass on security and privacy of HIPAA is the fax and telephone.

"HIPAA doesn't necessarily require a BAA for storing data, but ... having a BAA for data future-proofs the cloud strategy for the healthcare organization," Tippett said.

Through cloud services, healthcare professionals can collaborate, share patient information in near real-time and store large volumes of data for electronic health records and radiology images. In addition, healthcare organizations can centralize data so they can operate more efficiently, Tippett said.


Originally published on Computerworld |  Click here to read the original story.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Cloud ComputingWhite Papers & Webcasts

See more White Papers | Webcasts

Answers - Powered by ITworld

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Ask a Question
randomness