Enhance HIPAA Compliance with Remote Wipe


Apr 24, 2014 TigerText

Enhance HIPAA Compliance with Remote Wipe

TigerText´s secure messaging platform conforms to all the administrative, physical and technical safeguards enacted in the HIPAA Security and Privacy Rules, and helps organizations achieve HIPAA compliance with remote wipe.

Remote wipe is a function that allows administrators to remove any message related to electronic protected health information from an authorized user´s personal mobile device when a potential security risk is identified.

Scenarios in which a remote wipe would be necessary include:

  • If an authorized user has lost or misplaced their personal mobile device
  • If an authorized user is not complying with policies for secure messaging
  • If a personal mobile device belonging to an authorized user is stolen
  • If the authorized user wants to sell or dispose of their mobile device
  • If the authorized user attempts to save data to an external hard drive for illicit purposes

In each of these scenarios an administrator can remove all communications which contain links to encrypted data stored on the organization’s secure servers and prevent future access to protected health information by removing the user from the system.

Assign Message Lifespans to Further Achieve HIPAA Compliance

Messages containing links to protected health information can be assigned lifespans so that they delete automatically after a pre-determined length of time. This function further reduces the risk if a breach of protected health information may occur and reduces an organization´s exposure to a potential fine for the mishandling of confidential patient data.

As fines levied by the US Department of Health and Human Services are “per patient record, per device,” the dollar amount of the fines can quickly escalate. Having the ability to assign message lifespans is essential to reducing a healthcare organization´s financial liability, especially as the rules for determining whether or not a breach has occurred changed in the Final Omnibus Rule of 2013.

A breach will now be presumed to have occurred unless the party considered responsible can demonstrate that protected health information was not compromised, whereas before the responsibility was on the US Department of Health and Human Services or the patient to prove that it had. When healthcare organizations achieve HIPAA compliance with remote wipe and message lifespan features, the risk of a financial penalty is virtually eliminated.

Learn More about Remote Wipe from TigerText

The remote wipe and message lifespan features on TigerText´s secure messaging platform promotes administrative control of user activity and ensures HIPAA compliant text messaging. However, they are just two of the security features integrated into TigerText´s secure messaging platform. If you would like to learn how you can achieve HIPAA compliance with remote wipe to safeguard the integrity of electronic protected health information, please contact us or arrange a free demo .