HIPAA Regulatory Compliance

HIPAA is the Health Insurance Portability and Accountability Act enacted by Congress in 1996. The HIPAA legislation was enacted to protect patient information and provide regulations that define the standards for transactions, privacy and security in the health care industry. These regulations provide the health care system with provisions to protect patient information and electronic medical records.

It is BP Logix’s commitment to provide its clients with the best technology solutions for document management and workflow software. The senior management of BP Logix will make every effort through good technology practices and internal operating procedures to develop and utilize systems, which enable our customers to comply with the HIPAA legislation.

The regulation’s premise is to maintain privacy and security for patients' records and electronic exchange of this information. Just as printed records provided a paper trail through the product life cycle, computer records need to create a similar electronic trail, identifying users, approvals and progressions that lead back to the original data.

BP Logix products provide comprehensive security management, electronic data interchange (EDI) and auditing features that enable your organization to facilitate HIPAA enforcement.

• User authentication supports your existing compliant security systems (e.g. Windows Domain Security, Windows 2000 Active Directory, LDAP, etc.);
• All data transmissions can be protected through SSL encryption;
• Only authorized users have access to sensitive information;
• User IDs can only be logged in from a single location at a time;
• Automatic logoff due to system inactivity ensures inactive sessions require revalidation through authentication system to continue working;
• Document version control maintains identity of any user who modifies a document;
• A pre-defined, automated workflow process provides consistent review, approval and update procedures for electronic records and documents;
• An archive maintains all documents and records in their native formats, allowing retrieval according to date by authorized users;
• Detailed auditing logs provide a complete audit trail of all users’ activities and system events for reporting and audit purposes;
• All security, permission or access changes are audited;
• All document updates and approvals requiring an electronic signature are re-authenticated;
• Access control lists allow security permissions to be established for the read, write, and delete of documents and electronic records, preventing users with write permission from deleting archived information.

Home | BPM Software | Workflow Software | Business Rules Engine | Workflow Management | Document Workflow | eForms | Site Map