{"version":"1.0","provider_name":"OTAVA","provider_url":"https:\/\/www.otava.com","title":"Encryption for the HIPAA Compliant Cloud","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"3XuXLQkoqB\"><a href=\"https:\/\/www.otava.com\/blog\/encryption-for-the-hipaa-compliant-cloud\/\">Encryption for the HIPAA Compliant Cloud<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.otava.com\/blog\/encryption-for-the-hipaa-compliant-cloud\/embed\/#?secret=3XuXLQkoqB\" width=\"600\" height=\"338\" title=\"&#8220;Encryption for the HIPAA Compliant Cloud&#8221; &#8212; OTAVA\" data-secret=\"3XuXLQkoqB\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.otava.com\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","description":"Many cloud computing infrastructure as a service (IaaS) providers may provide log monitoring, antivirus, web application firewalls, SSLs, dedicated SANs and more for healthcare organizations, but often the missing ingredient lies in one key technical aspect: encryption. Encryption for healthcare organizations that need to meet HIPAA compliance is important for a few reasons: It\u2019s considered best practice, and called out by the HIPAA Security Rule: A covered entity must, in accordance with \u00a7164.306\u2026 Implement a mechanism to encrypt and decrypt electronic protected health information.\u201d (45 CFR \u00a7 164.312(a)(2)(iv)). Encrypted (electronic protected health information) ePHI is not subject to the breach notification obligations under the HITECH Act, according to the AmericanBar.org. Encrypting health data at rest and in transit means you must encrypt data stored or archived as backups, not just data initially collected or processed. So with these considerations in mind about the importance of encryption for HIPAA compliance, what should you look for in a HIPAA compliant cloud solution and provider? Complete offsite backup and disaster recovery options Encryption of data at rest A private cloud solution with dedicated servers An independent audit report against the OCR HIPAA Audit Protocol Business associate agreement (BAA) Documented policies and procedures Business...","thumbnail_url":"https:\/\/otavawebsite.wpengine.com\/wp-content\/uploads\/images\/packages\/packages-hipaa-high-capacity-cloud.png"}