At Webster, we understand that HIPAA compliance is an ongoing practice — subject to advances in technology, changing policies, new procedures, and updated HIPAA rules. It may seem counter-intuitive, but when set up and executed properly, adhering to HIPAA compliance strategies and systems can save time and resources in many ways.
With our daily workflow, we employ a set of security measures in place to ensure the safety and chain-of-custody of our print projects. Here’s a look at the process Webster uses when a HIPAA-flagged job moves through our plant.
At the beginning of the project, there are three ways that our team determines if a job requires HIPAA compliance:
Once we assign HIPAA status of an incoming job, we use several measures to ensure security from the start.
When it is determined that a job needs this level of compliance, we mark it in our production software as a HIPAA flag to ensure proper security procedures through every step of the workflow.
When a HIPAA-flagged job enters the workflow, we have strict quality control and review processes in place to ensure compliance.
24/7, access-controlled and monitored printing process for HIPPA jobs
Cameras are located around the facility for controlled access
The only identifying information is the job specification ticket
When completing digital production on pre-printed variable pieces, the top sheet of every bin is covered during printing
Our workflow is set up to move a HIPAA-flagged job through the production process and into the mail stream as soon as possible. Less time in the plant leaves less chance for any lapse in HIPAA compliance and security. This is where a strict workflow process so important. At Webster, we perform a critical structured turnaround on these jobs so there is no room for a potential violation.
When we receive a large job that exceeds a single-day capacity, the job is completed on the last full mail tray and then locked in a restricted-access storage room. Any pieces without variable data imprinting will remain in place. If we are working with digital jobs containing pre-printed variable information, the entire job will be stored in the restricted storage area.
The importance of HIPAA compliance cannot be overstated. In addition to possible financial penalties for non-compliance, it's our duty to protect the patient's most sensitive data. When we are entrusted with these jobs, we take the responsibility seriously. We know that creating and enforcing a step-by-step system allows us to deliver HIPAA-flagged jobs securely and with efficiency.
*To comply with the HIPAA Security Rule, all covered entities must: Ensure the confidentiality, integrity, and availability of all e-PHI. Detect and safeguard against anticipated threats to the security of the information. Protect against anticipated impermissible uses or disclosures that are not allowed by the rule.
HIPAA (Health Insurance Portability and Accountability Act) compliance pertains to protecting sensitive patient health information, commonly referred to as PHI (Protected Health Information). While HIPAA regulations primarily focus on electronic PHI (ePHI), such as that stored in electronic health records (EHR) or transmitted electronically, it also extends to PHI in other forms, including print media.
Here are some considerations for HIPAA compliance regarding print media:
By incorporating these considerations into your print media processes, you can help ensure HIPAA compliance and protect the privacy and security of patient health information. It's also essential to stay updated on any changes to HIPAA regulations and adjust your practices accordingly.
Have questions or need assistance? Fill out the form below, and we'll get back to you promptly to help with all your printing needs.
Need to get in touch? We're here to help with any questions or printing needs you may have. Reach out to us using any of the contact points below.