Technical Safeguards

The Security Rule defines technical safeguards in § 164.304 as “the technology and the policy and procedures for its use that protect electronic protected health information and control access to it.”  There are Physical, Administrative and Technical safeguards as part of the HIPAA rule.

Technical safeguards are becoming increasingly more important due to technology advancements in the health care industry. As technology improves, new security challenges emerge. Healthcare organizations are faced with the challenge of protecting electronic protected health information (EPHI), such as electronic health records, from various internal and external risks. To reduce risks to EPHI, covered entities must implement technical safeguards. Implementation of the Technical Safeguards standards represent good business practices for technology. 

What is has been coming to the forefront are cyber attacks and how the healthcare field is now a target.  Because of this, technical safeguards are more important than ever before.  Being hacked can cause your practice tens of thousands of dollars, not only in recovery costs, but down time.

It is important, and therefore required by the Security Rule, for a covered entity to comply with the Technical Safeguard standards and certain implementation specifications; a covered entity may use any security measures that allow it to reasonably and appropriately do so.