HIPAA & HITECH
Hospitals, clinics and private practices in the United States must comply with HIPAA and HITECH regulations to protect sensitive patient information. Athreon is committed to helping healthcare practitioners with their compliance requirements.
Athreon’s Commitment to HIPAA
Under HIPAA, Athreon is a Business Associate. As a Business Associate, we take protecting PHI seriously. We’re a HIPAA compliant medical transcription company that closely monitors all federal regulations that concern HIPAA. What’s more, we enter into Business Associate agreements with our clients who qualify as Covered Entities to help them ensure their own HIPAA compliance. Stringent security measures are our standard operating procedure.
In addition to our HIPAA medical transcription practices, we combine state-of-the-art technology with comprehensive managerial procedures to ensure the highest level of security. Our goal is to safeguard the confidentiality of all private information that we handle, whether transferred over public networks or stored internally.
Our Focus on HIPAA
To demonstrate our commitment as a HIPAA compliant medical transcription company, our comprehensive and continuous security review initiative focuses on a number of critical areas:
Secure Physical Access
Our HIPAA transcription compliance begins at our own facilities. A key element of being a HIPPA-compliant medical transcription company is to limit access to our facilities. Our data centers are kept under continuous lock-down and are monitored by around-the-clock surveillance. Individuals who are granted access must pass through several levels of identity verification.
Authenticated Access & Privileges
Being a HIPAA-compliant medical transcription company also requires keeping a tight rein on who has access to sensitive data. We limit access to private information to only those who have a need to know. We’ve implemented an imbedded intelligence procedure that ensures only authorized individuals can gain access to information specific to their job functions. Additionally, we conduct thorough background checks on all employees and vendors.
HIPAA medical transcription compliance requires a comprehensive audit procedure. We maintain a detailed audit trail for every action that is taken on any data or voice files. This happens at all stages of the speech to text process.
A HIPAA-compliant transcription company must also take steps to encrypt sensitive data. Our security protocols encrypt data-at-rest and data-in-motion. Data is encrypted using advanced encryption standards and protocols. This further ensures HIPAA medical transcription compliance.
Athreon’s data centers are structured around a highly-redundant environment. Any failure of a single server, communications device or storage device will not take our systems offline. Redundancy is further enhanced by 2 separate Internet providers. Likewise, redundant public power supplies, an engine generator, and redundant climate control systems help ensure uninterrupted operations.
When any transaction – speech to text dictation/transcription – is received at our primary data center it is immediately copied to 2 additional storage arrays. Within 10 minutes it is also copied to our secondary data center. Likewise, each evening, all data in the primary data center is recopied to the secondary data center to ensure the protection of all voice and text files.
Data Centers & Uptime
With data centers in multiple locations, Athreon clients have peace of mind that if a catastrophe impacts one data center, there is another standing by to protect all vital information. Athreon’s data centers have a 99.9% uptime record (not to include maintenance, which occurs overnight during non-peak weekend hours).
To prevent data loss as the result of fire, our HIPAA compliant medical transcription facilities are equipped with a monitored fire-detection system and fire suppression.