Ask the Experts: What security certification does Trace hold?
Tim Hoskins | Senior Director, Client Services
A+, Network+, Security+, MCSA, MCSE
At Vyne, protecting the security of your data is our highest priority. Healthcare data is unique in that it involves Protected Health Information or “PHI” and requires a specific set of security considerations under the Health Information Portability and Accountability Act, Pub.L. 104–191, otherwise known as “HIPAA.’ We understand the complexities of interpreting regulatory requirements associated with the storage and exchange of this information.
To help our clients manage these complexities, Vyne’s Trace® platform has been certified for information security by the Health Information Trust Alliance (HITRUST), a certification that’s recognized as the gold standard for managing regulatory compliance and risk associated with health data. Developed jointly by healthcare and IT professionals, HITRUST’s Common Security Framework (CSF) integrates diverse sets of existing requirements into a single, overarching security framework.
HITRUST CSF-certified status indicates that Trace meets industry-defined requirements to appropriately manage risk by protecting and securing sensitive, private healthcare information. By including federal and state regulations, standards and frameworks, and incorporating a risk-based approach, CSF provides a comprehensive approach to reduce complexity, risk and cost while protecting patient information and other data.
Leveraging the CSF framework, Vyne Medical is able to translate requirements into a roadmap that cross-references security and data privacy regulations from both HIPAA and Health Information Technology for Economic and Clinical Health Act, P.L. 111-5, “HITECH.” Designed to fully address the letter and spirit of HIPAA, the prescriptive and scalable security controls provide specific and reliable direction to help manage compliance across a broad range of regulatory requirements.
In the article, Benefits of HITRUST Certification, Healthcare IT News states that “with one simplified compliance process,” the CSF:
- Incorporates existing, globally recognized standards such as HIPAA, NIST, ISO, PCI, FTC Red Flag, and COBIT
- Reduces risk of non-compliance with HIPAA
- Scales according to an organization’s size, type and complexity
- Provides clear, actionable guidelines
- Evolves according to needs and in accordance with changes in both the healthcare industry and regulatory environment
For these reasons, CSF certification has become the benchmark organizations are measured against for protecting sensitive data and safeguarding PHI. Vyne is proud to be counted among the elite group of organizations that have earned this certification and we actively pass along its benefits to our clients.
Contact us to schedule a call with one of our Vyne Medical healthcare solution experts today.