WorkTime is HIPAA compliant
Whether the intention is to ensure patient health data confidentiality or maximize employee productivity, healthcare providers and business associates involved with any healthcare information MUST ensure that the monitoring tools of choice comply with HIPAA privacy and security rules. WorkTime productivity monitoring features enable healthcare organizations to comply with HIPAA without invading privacy.Defining the scope of HIPAA compliance
Health Insurance Portability and Accountability Act (HIPAA) requires healthcare organizations to adopt appropriate processes and procedures to ensure the highest confidentiality of Protected Health Information (PHI). PHI may include anything inpatient health records, such as medical history, lab records, to name a few. It also includes other patient information such as name, social security number, birth date, email addresses, and additional information that can be used for identity theft. Penalties can be up to “$50,000 per penalty, per violation and increase up to $1.5 million” per identity penalty.Who is covered by HIPAA
HIPAA laws recognize covered entities (anyone administering treatment, payment, and other operations in the healthcare sector) and business associates (anyone who has access to patient information and supports treatment, payment, or operations). The covered entities under HIPAA regulations include medical, medical affiliates, legal, insurance, human resources, risk assessment. After the enactment of "HIPAA's omnibus rule" in September 2013, were extended to include business associates, auditors, consultants, IT companies, and others who have any involvement with health information.HIPAA privacy and security rules
The HIPAA security rule requires covered entities to implement administrative, physical, and technical safeguards to ensure that medical information is stored, transmitted, and received safely and securely.Administrative safeguards
HIPAA requires practices to develop and establish detailed policies and procedures for employees to learn, follow, and maintain PHI security.Physical safeguards
Need to be put in place to protect locations and devices within practices. Access to facilities access must be created and monitored.Technical safeguards
HIPAA requires practices to implement the right software and equipment to protect PHI. Practices should incorporate encryption and decryption in backing up, restoring, and transmitting electronic patient information.WorkTime does not deal directly with PHI. It simply does not record it. WorkTime focuses on employee productivity monitoring.
WorkTime does not access PHI!
WorkTime is purely an employee productivity monitoring software that does not support any invasive features that infringe privacy. WorkTime neither has access to nor collects any patient PHI. This is because WorkTime doesn’t record screenshots, keystrokes, and sensitive data, which is the most efficient way to stay HIPAA compliant while implementing employee monitoring software. WorkTime components and all data collected by WorkTime Corporate stay on clients’ computers/servers.With WorkTime's non-invasive monitoring features, healthcare organizations can ensure that both patients' and employees' sensitive data is kept private and protected.