Health Information Compliance Alert
Take 5 Steps To Manage Mobile Device Use In Your Organization
PDF
Weigh the risks versus the benefits before using mobile devices.
As more and more healthcare providers are using smartphones, tablets and laptops in their everyday practice, mobile device security has become more important than ever. Fortunately, there are strategies that you can employ to help protect your mobile devices and your patients’ protected health information (PHI).
The HHS Office of the National Coordinator for Health Information Technology (ONC) offers the following steps you should take to manage mobile device use:
1. Decide on usage: First, decide whether you’ll use mobile devices to access, receive, transmit, or store patients’ PHI. Also, decide whether you’ll use mobile devices as part of your organization’s internal network or systems, such as your electronic health record (EHR) system.
2. Evaluate the risks: Consider the risks of using mobile devices to transmit PHI. Conduct a risk analysis to identify threats and vulnerabilities.
3. Create a risk management strategy: Identify a mobile device risk management strategy, including privacy and security safeguards. This strategy will help your organization to develop and implement mobile device safeguards and reduce risks identified in your risk analysis. Your strategy should include an evaluation and regular maintenance of the mobile device safeguards you put in place.
4. Implement policies and procedures: Develop, document, and implement mobile device policies and procedures. Address in your policies and procedures topics like mobile device management, using your own device, restrictions on mobile device use, and security or configuration settings for mobile devices.
5. Conduct training: Provide mobile device privacy and security awareness and ongoing training for your staff.
Health Information Compliance Alert
- Case Study:
Beware: HIPAA Compliance Won't Always Ensure Protection From Breaches
Take 5 steps to go beyond Security Rule standards to protect your data. The most [...] - HIPAA Lawsuits:
4 Ways Plaintiffs Get Around No-Private-Right-Of-Action Rule
How breach of contract claim may directly impact your NPP. Sure, the federal HIPAA regulation [...] - Reader Questions:
Does Bluetooth Endanger HIPAA Security On Mobile Devices?
Question: Our clinicians use smartphones and tablets. Some of these devices have Bluetooth capability. Is [...] - Reader Question:
What's The Difference Between 'Patches' & 'Updates?'
Question: Are “patches” and “updates” the same thing? If not, what’s the difference between the two? [...] - Security Rule:
Take 5 Steps To Manage Mobile Device Use In Your Organization
Weigh the risks versus the benefits before using mobile devices. As more and more healthcare [...] - Enforcement News:
Heads Up: Another Court Shoots Down Lawsuit Based On 'Actual Harm'
Plus: OCR’s ‘Wall of Shame’ gets a makeover and new web address. The U.S. District [...] - Mobile Device Safeguards:
Quick Tips For Tighter Security
Beware of file-sharing apps and public Wi-Fi connections. Mobile devices are certainly handy in the [...]