How DOMA Achieves
HIPAA Compliance
DOMA is compliant with HIPAA (Health Insurance Portability and Accountability Act of 1996) regulation protecting private health information records.
What is HIPAA Compliance?
HIPAA Regulations protect private health information records by requiring:
HIPAA’s rules all center around Protected Health Information (PHI) and Electronic Protected Health Information (ePHI). PHI is individually identifiable information that centers around past, present, and future sensitive patient health information.
This includes:
- Medical Records
- Diagnoses
- Treatments
- Prescriptions
- Test Results
- As well as other Personally Identifiable Information (PII)
According to HIPAA any Covered Entity and Business Associates that use and store PHI must ensure its safety throughout its handling. It is required that any reasonable threats to the security of PHI be protected against including physical, technical, and administrative threats.
You can learn more about HIPAA on the US Department of Health & Human Services website.
HIPAA Compliance at DOMA
At DOMA we are committed to making sure Medical Records are protected.
Initial Cybersecurity Training occurs for all employees during the on-boarding process. Including:
- HIPAA
- PII
- PHI
- Cybersecurity Best Practices
- Password Security
- Facility Security
- Each employee is re-trained in 12-month cycles.
- We follow the HIPAA Regulations for safeguarding Protected Health Information (PHI) and Personal Identifiable Information (PII) throughout the process of handling your documents.
- Within the DOMA Secure Facility access to Document, Conversion Rooms are restricted, requiring key-card entry. In our Secure Document Conversion Rooms, cell phones and all other forms of recording devices are prohibited, further protecting PII and PHI.
- Our DX Software is highly secure and encrypted both during transmission and at rest.
- We use the Amazon Web Serivces (AWS) Cloud, which is a secure environment that meets HIPAA compliance.
HIPAA Compliant Software Platform
Our Software Was Built from the Ground Up to Be Secure
When you use our software as your content services platform (CSP) you can rest easy knowing our platform is HIPAA compliant. Our DOMA DX software incorporates the following protocols to ensure your data is safe:
- Multi-Factor User Authentication
- Access Management Such as Time-Outs
- High-level Encryption
- Regular Patches
- Proactive Threat Protection
- Audit Trails
- Physical Security (Within DOMA)
- Backup, Disaster Recovery, & Version Control