HIPAA & PHI Capable Accounts

HIPAA (Health Insurance Portability & Accountability Act) is a United States law that provides a data privacy and security plan for keeping patients’ personal or protected health information (PHI) safe. SurveyRock Enterprise plan holders can secure their accounts to fulfill HIPAA requirements.

With HIPAA enabled on your account, you can safely distribute medical or health related surveys, secure in the knowledge that the patient data is protected. Specific organizations called “covered entities” and their business associates must comply with the requirements to protect the privacy and security of health information.

HIPAA compliant

If you want to enable HIPAA on your SurveyRock account, contact our support team for assistance. We will send you a business associate agreement (BAA) to sign and return to us.

The legislation contains several sections, including one related to security. After your account has been HIPAA enabled, each of these technical safeguards will be in effect:

  • Network encryption – Encrypt any electronic PHI to meet NIST cryptographic standards any time it is transmitted over an external network.
  • Control access – Each user is assigned a centrally-controlled unique username and password to access the systems.
  • Control activity audits – We offer detailed logging to track all PHI access attempts and to monitor how PHI data is manipulated.
  • Enable automatic logoff – Users must be logged out after a certain set time-frame. We have set this to 30 minutes of inactivity.

Security Suggestions

When you work with a HIPAA enabled account we offer several security tips to remind you that you might be dealing with PHI sensitive data at the following times:

  • Exporting survey data – If you download survey results to your computer that might contain protected health information, be sure to use every appropriate measure to safeguard the data.
  • Viewing individual survey results – When you look at the data of individual survey respondents containing PHI, be mindful that only authorized personnel can see your screen.
  • Public survey results – We give you the option to share survey results information with others but recommend turning off this function when working with PHI.
  • Survey sharing – If you give others within your team or company access to your surveys, be sure that they understand they might be working with PHI.
HIPAA data warning to remind you to handle the information carefully

Please note that once your account has been enabled for HIPAA, it cannot be disabled. In order to ensure the safety and security of any protected health information, HIPAA accounts cannot be downgraded, only removed when no longer needed.

Sign Up For Free
Share this article:

Comments

Leave a reply

Your email address will not be published. Required fields are marked *

hrHrvatski
en_USEnglish sqShqip arالعربية bs_BABosanski bg_BGБългарски cs_CZČeština da_DKDansk nl_NLNederlands fr_FRFrançais de_DEDeutsch hi_INहिन्दी hu_HUMagyar it_ITItaliano ja日本語 lvLatviešu valoda lt_LTLietuvių kalba mk_MKМакедонски јазик pl_PLPolski pt_PTPortuguês pt_BRPortuguês do Brasil ro_RORomână ru_RUРусский es_ESEspañol sv_SESvenska tr_TRTürkçe ukУкраїнська hrHrvatski
We've detected you might be speaking a different language. Do you want to change to:
en_US English
en_US English
sq Shqip
ar العربية
bs_BA Bosanski
bg_BG Български
hr Hrvatski
cs_CZ Čeština
da_DK Dansk
nl_NL Nederlands
fr_FR Français
de_DE Deutsch
hi_IN हिन्दी
hu_HU Magyar
it_IT Italiano
ja 日本語
lv Latviešu valoda
lt_LT Lietuvių kalba
mk_MK Македонски јазик
pl_PL Polski
pt_PT Português
pt_BR Português do Brasil
ro_RO Română
ru_RU Русский
es_ES Español
sv_SE Svenska
tr_TR Türkçe
uk Українська
Change Language
Close and do not switch language