PROCESS FLOW > ZipIT Secure HIPAA Compliant server receives dictated files from client.
Digital voice files are transmitted to our servers. All incoming data is captured in high availability tolerant system. ZipIT Solutions has undertaken HIPAA compliance and has taken painstaking measures to protect all client dictated information. Our levels of security meet and exceed all HIPAA regulations related to electronic transmission of information. ZipIT Solutions has implemented the following technical safeguards in compliance with the HIPAA.
Access Control:
ZipIT Solutions has implemented procedures in the system that gives the ability to allow access only to persons that have been granted access right. Protection of secure server resources is provided primarily by the firewall. Firewalls screen all inbound and outbound traffic to grant access only to authorized applications, and only to legitimate users. Determining who is a legitimate user (proof of identity) is the role of authentication. Thus authorization or access control protects the privacy of information stored on servers.
Transmission Security:
ZipIT Solutions guards against unauthorized access to information that is being transmitted over the network. All medical data (dictation, transcription, and search facility) is managed on a secure server that encrypts all data communication between your computer and our server. This means, anyone intercepting any data while it is being transferred from our server to your computer could not interpret or decrypt this data. ZipIT Solutions allows you to view patient files on the secure server and download if required. All downloads will be encrypted and then decrypted with a key. To access any data from the secure server, a valid username and password is required – as an added level of precaution.
Business Policy:
Besides the above measures, access to personally identifiable information is restricted to employees and business that need access to the information in order to do their jobs. These employees are very limited in number, and are committed to the privacy and security policies. The extra step is taken to have all employees execute comprehensive nondisclosure agreements, which provides explicit legal confidentiality protections.