www.pentamedllc.com
 
The Congress passed the Health Insurance Portability and Accountability Act (HIPAA) in 1996. The purpose of this Act was to improve the efficiency and effectiveness of the healthcare system through the development of established health data standards and requirements for the transmission and storage of electronic health information. HIPAA is the first national regulation on medical privacy and is the most far-reaching federal legislation affecting the use, release and transmission of Protected Healthcare Information (PHI). PENTA is backed by technology and coding amenable to all HIPAA policies and is open to current and future HIPAA guidelines.

Below is a brief list of how PENTA meets and exceeds HIPAA requirements:


Data Encryption



PENTA values client concerns for complete security and privacy of their PHI. We utilize and match the highest technology for all data transmission. All clients' related information when transmitted via web uses the 128-bit standards and Secure Sockets Layer (SSL) encryption.


Infrastructure Security



PENTA has built in strong infrastructure security measures. These are a combination of predominant hardware and specific software measures to ensure security of the web site, servers and databases. Backed by firewall technology, all incoming traffic is validated and allows access to authorized users only. All critical systems are monitored 24/7 by experts trained in all aspects of physical and technical security.


User Authentication Security



Backed by proprietary software applications, PENTA controls access to restricted areas of the web site and database via login authentication. An automatic log off feature is in place to prevent unauthorized access to information in the event of the original user leaving the workstation without logging off.


Internal Audit



We record and regularly monitor all system activities, including but not limited to, login, file access and security events. PENTA uses this audit system to assess and critique its technical security measures.


Personnel Policies



Access to patient's PHI is limited only to those employees who are liable to perform related tasks. Each employee is inherently made conscious to the fact that data accessed through their job functions is to be safeguarded and should not be disclosed to unauthorized parties and all employees are required to sign a confidentiality agreement. New employees are introduce to HIPAA regulations and trained on all security systems and privacy policies during their initial orientation process.


Contingency Plan



PENTA has an emergency response plan that is regularly updated, tested and revised. This ensures readiness for any contingency.
back to top    
 
TERMS OF USE  |   PRIVACY POLICY  |   FAQ
Copyright © 2004 - 2005 PENTA Medical Management Services, LLC. All Rights Reserved.