Compliance with Health Insurance Portability and Accountability Act of 1996 (HIPAA)

Scripsys, Inc. values the privacy and security of our transactions. To safeguard your data, we have implemented strict guidelines complying with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), as well as our own internal policies, to ensure that information transmitted between Scripsys, Inc. and our clients is used only for the intended purposes.

Our security measures and HIPAA compliance include the following:

Confidentiality Agreement

All our Medical Transcriptionists and other employees are required to sign a confidentiality agreement stating that disclosure of confidential information to anyone other than the client is prohibited and is punishable by law. Disclosure of confidential information is prohibited indefinitely, even after termination of the contract or business agreement. Confidentiality requirements do not end when the business relationship ends. All Medical Transcriptionists are expected to uphold the Code of Ethics adopted by the American Association for Medical Transcription with regard to patient health information.

All our Medical Transcriptionists and employees have documentations of having received appropriate training in HIPAA involving security and privacy of Patient Health Information or in the company’s policies and procedures regarding safeguarding the Patient Health Information.

Work Performed in a Secure Area

Workstations are located in a secure area where only authorized personnel can come in. The area is secured by fingerprint biometrics with automatic door lock access which only authorized personnel can gain access to.

Other Media

E-Mail: Encryption of e-mail and attachments containing Patient Health Information will be used. The Security Rule designates this as an “addressable” issue, where it is up to the Covered Entity (CE) to decide whether to encrypt and up to what level.

All voice files and transcribed documents are all encrypted upon transferring and are automatically decrypted upon reaching the right addressee.

Disaster Recovery/Backup Planning

Precautions will be taken for equipment failure and adverse environment conditions such as power outages.

  1. All Microsoft Office Software applications have auto backup features and are set to a frequency of 1 to 2 minutes.
  2. All computers are wired and connected to its own UPS to ensure that all-important documents will be saved during power outage.
  3. All voice files from the server have been back up to a particular computer and to a removable media (DVD/ RW) in case of a server failure.
  4. We have two different Internet connectivity (Primary and Back-up) and one dial-up modem, in case all carriers are down.
  5. We are firewall enabled which blocks certain websites that can affect the system.

*The HIPAA was passed in 1996 by the US government to outline security measures that should be implemented by Medical Transcriptionists to protect sensitive medical data. For more information on HIPAA, visit hipaa.org.

*The HIPAA was passed in 1996 by the US government to outline security measures that should be implemented by Medical Transcriptionists to protect sensitive medical data. For more information on HIPAA, visit hipaa.org.