ECI has helped many medical practices stay up to date and in compliance with HIPAA regulations as they apply to their computer networks and wiring. Non-compliance can lead to substantial penalties; up to $25,000.00:
Penalty is defined to mean the amount calculated under 42 U.S.C. 1320d-5. This section of HIPAA sets a penalty of not more than $100 for each violation, subject to a calendar-year cap of $25,000 for all violations of an identical requirement or prohibition. The term includes the plural form of the word.
The greater risk is the potential for civil lawsuits based on privacy issues due to these violations. These statutes allow for criminal penalties as well. HIPAA requires that access to computers and network equipment be limited:
§ 164.310 Physical safeguards.
A covered entity must, in accordance with § 164.306:
(a)(1) Standard: Facility access controls. Implement policies and procedures to limit physical access to its electronic information systems and the facility or facilities in which they are housed, while ensuring that properly authorized access is allowed.
Electronic information systems can include network servers, switches and hubs, as well as data wiring systems. HIPAA also requires proper data backup, storage, employee training, and password protected access to computers, even in small practices. ECI can help medical practices to be compliant with these regulations, and with all of their office communications issues. ECI can provide a full inspection and recommendations for you.