Atlantic.Net Blog

Q & A: HIPAA Compliant Report Writer Control System

Brett Haines July 31, 2015 by under Healthcare IT 0 Comments

Since we focus so much on the healthcare industry, we regularly receive questions from HIPAA covered entities and their tech partners looking for compliant hosting services. We were recently contacted by a customer interested in encrypted storage, remote access, Web (Apache) and DB (MySQL) servers for a HIPAA-compliant report writer control system (RWCS).

Here is an excerpt of our interaction, sourced from the real transcripts. (Note: Anonymity is maintained, and any intellectual property or other sensitive details are omitted.)

Read More


Do I Need to Be HIPAA Compliant?

Adnan Raja July 24, 2015 by under Healthcare IT 0 Comments
  • Who Needs to Be Compliant?
  • The Role of the Healthcare Clearinghouse
  • Interviewing Business Associates
  • Making Strong HIPAA Choices

Who needs to Be Compliant?

You need to be compliant with the Health Insurance Portability and Accountability Act if you are a covered entity or business associate. Business associates are a catch-all group that includes any company performing a service for covered entities that exposes it to protected health information (electronic health records or other data). Covered entities include health care providers, health care plans, and health care clearinghouses.

Read More


How to Comply with HIPAA

Brett Haines July 23, 2015 by under Healthcare IT 0 Comments

How do you comply with the Health insurance Portability and Accountability Act (HIPAA)? This article covers the four basic elements of the regulations. It also discusses myths associated with the basic compliance testing method, security risk analysis – most notably that a HIPAA risk analysis checklist is insufficient for compliance.

Read More




How Do I Protect Privacy with HIPAA Compliance Controls and Safeguards?      

Brett Haines July 15, 2015 by under Healthcare IT 0 Comments

There are plenty of checklists and guidebooks out there related to HIPAA compliance. However, it helps to go to the source to see what specific HIPAA controls are necessary to safeguard protected health information. Here are specific details on how to follow the Security Rule, as indicated directly by HHS guidelines:

  • Basic Guidelines
  • Vulnerability Assessments
  • Administrative HIPAA Controls
  • Physical HIPAA Controls
  • Technical HIPAA Controls
  • The Role of Business Associates

Basic Guidelines

The Security Rule states that healthcare organizations must properly protect ePHI using reasonable administrative, technical, and physical HIPAA safeguards.

The following must be achieved:

Read More


How Do I Test My HIPAA Compliance?

Adnan Raja July 14, 2015 by under Healthcare IT 0 Comments

We all want simplicity, but there’s no getting around the fact that compliance with the Health Insurance Portability and Accountability Act of 1996 is complicated. However, you can use a couple of checklists along with penetration testing of your system to verify that you have hit all the bases.

Read More


What Software Should I Use to Help with HIPAA Compliance?

Brett Haines July 13, 2015 by under Healthcare IT 0 Comments

Rather than just listing HIPAA-compliant software, this report gives advice on all the fundamentals, along with a few misconceptions about the kind of robust security environment that is necessary to maintain HIPAA compliance.

  • Proper Network Segregation
  • Tackling Encryption
  • But That’s Not All…

Proper Network Segregation

Security via obfuscation is not a legitimate way for a healthcare company to do business. This tactic is primarily used by small practices that have historically been using their own servers.

Read More



Cloud VPS vs. Traditional VPS vs. Private Cloud

Brett Haines June 18, 2015 by under VPS 0 Comments

VPS Changing with the Cloud

A critical concern when exploring hosting solutions is deciding whether you want to go with the innovative, newer option or to stick with the traditional model. Cloud has grown astronomically in recent years. Perhaps 2014 was the year that cloud graduated from test projects and startups to enterprise acceptance, with General Electric announcing that it was already running 90% of new applications through the public cloud.

Read More


Stay Connected With Us