Leading ECM Provider Ensures Privacy, Security of Health Information
New Windsor NY, December 1, 2016 – As a global software company, DocuWare regularly confirms that it adheres to national data laws in many countries where its products are sold. Since DocuWare is a large ECM provider in the U.S., it recently went through the process of having its current controls verified and audited to ensure compliance with HIPAA regulations.
What is HIPAA and Its Importance to DocuWare
HIPAA, the Health Insurance Portability and Accountability Act of 1996, regulates the use and disclosure of an individual's health information in any format, also known as Protected Health Information (PHI). The organizations subjected to HIPAA include Covered Entities (healthcare providers), Business Associates (vendors contracted by Covered Entities involved in the use of PHI), or Business Associate Subcontracts (contractors that a Business Associate uses in the use of PHI). DocuWare is subject to HIPAA because it is a Business Associate of its Covered Entity clients.
How DocuWare is HIPAA Compliant
While there is no official organization that provides a HIPAA-certified seal to Business Associates, DocuWare took the necessary steps to put strict procedures in place to be HIPAA compliant. It trained all employees on HIPAA policies and assigned an official in-house Privacy Officer and Security Officer. Additionally, DocuWare ensured that information in its Cloud solution is secure with its international ISO 27001 and SOC 2 certifications.
The Value to DocuWare Customers
With HIPAA procedures in place and a strong focus on compliance, DocuWare offers complete ECM solutions to any size organization, in any industry, while keeping customer information private and secure.