Free EHR, EHR and Healthcare IT Newsletter Want to receive the latest updates on EHR, EMR and Healthcare IT news sent straight to your email? Get all the latest EHR News for FREE!

Imprivata Announces Secure Texting Application for Healthcare – #HIMSS12

Imprivata: they’ve announced a secure texting application developed specifically for healthcare and designed by physicians and for physicians. CorText will allow physicians to share and access PHI securely from their personal mobile devices.

To learn more about CorText and to speak with an Imprivata representative, please visit them at booth #3160 at HIMSS12
First Healthcare Texting Solution Designed by Clinicians in Collaboration with Hospitals; Meets Physician Demand for Secure, Timely Communication

Imprivata, the leader in secure access and collaboration solutions for healthcare, today announced Imprivata CorText(TM), the first texting application designed by physicians, for physicians, in collaboration with acute care hospitals. Until now, strict security regulations surrounding protected health information (PHI) have precluded healthcare providers – and patients – from the benefits of quick, convenient data sharing via text. Imprivata CorText has been developed as the result of strong demand from within Imprivata’s base of 900 healthcare customers and is built on technology and intellectual property acquired from Validus Medical Systems in 2011.

“Whether it’s to request a consult or to send an image of an EKG to a cardiologist, today’s care providers require a secure and convenient way to collaborate electronically,” said Sean Kelly, M.D., Chief Medical Officer for Imprivata. “Unlike other texting products which have been built for consumers, we’ve worked with acute care hospitals and physicians to design Imprivata CorText to meet the needs of hospital administration and clinicians alike. Based on Imprivata’s 10-year track record for streamlining secure clinical workflows, doctors and nurses will appreciate how easy Imprivata CorText is to use; CIOs will sleep better at night knowing that it’s secure.”

Imprivata CorText enables hospitals to provide their physicians and clinicians with an easy, convenient and secure texting solution built for specific clinical workflows. Examples include:

Second opinions/Photos. With Imprivata CorText, physicians can instantly and securely collaborate with each other by sending images of clinical exam findings, EKGs, and radiological studies. Patients benefit from an expanded range of expertise contributing to their treatment.

Patient discharge process. Physician to nurse communication regarding discharge instructions often results in follow-up questions which must be addressed and confirmed before discharge can take place. With CorText nurses and physicians can securely communicate real-time via text. This allows for a more efficient, streamlined approach than traditional communication tools such as voice or pager.

Prescription clarification. Hospital pharmacists must communicate with physicians in order to clarify and/or confirm prescriptions. The ability to text this information, without the risk of a security breach, saves time and speeds patient service.

Care providers have consistently experienced challenges in accessing and communicating with colleagues in a secure and timely manner. While consumer-based texting applications are widely used in business and personal communications, government regulations such as the Health Insurance Portability and Accountability Act (HIPAA) privacy rule in the U.S., prohibit physicians and clinicians from texting PHI.

“Clinicians regularly carry pagers along with their personal mobile phones. They get an alert on one and communicate on the other, resulting in a cumbersome experience and inefficient workflow,” stated Barry Runyon, Research Vice President at Gartner. “As the personal adoption of smartphones in healthcare increases, Gartner expects healthcare delivery organizations (HDO) to converge on a single device for codes, calls, alerts and collaboration. To support this transition, HDOs must enforce appropriate levels of privacy, security and compliance around protected health information while enabling collaborative clinical workflows that enhance care delivery.”

Imprivata CorText will be generally available in June 2012 for iPhone, Android and Blackberry smartphones. For information on becoming a Beta Site, click here or visit the Imprivata booth (#3160) at the HIMSS12 Annual Conference & Exhibition opening today in Las Vegas.

To learn more about Imprivata, please visit www.imprivata.com .

About Imprivata

With more than 2 million users and 900 healthcare customers, Imprivata is the #1 provider of secure access and collaboration solutions for healthcare. By strengthening user authentication, streamlining application access and simplifying compliance reporting across multiple computing environments, customers realize improved workflows, increased security and compliance with government regulations.

Imprivata has received numerous product awards and top review ratings from leading industry publications and analysts, including a Strong Positive rating in Gartner’s 2011 Marketscope for ESSO, the #1 ranking in the KLAS SSO Performance report and the #1 rating in 2010 Best in KLAS and Category Leaders report. Headquartered in Lexington, Mass., Imprivata partners with over 200 resellers, and serves the access security and collaboration needs of customers around the world. For more information, please visit www.imprivata.com or follow us on Twitter at @Imprivata. Follow Imprivata on Twitter: https://twitter.com/Imprivata Like Imprivata’s Facebook Page: www.facebook.com/ImprivataConnect with Imprivata on LinkedIn: www.linkedin.com/company/imprivata

All Imprivata products are trademarks of Imprivata, Inc. in the USA and other countries. All other product or company names mentioned are the property of their respective owners.

February 22, 2012 I Written By

WPC Demonstrates Security & Compliance and ICD-10 Solutions with Microsoft at HIMSS12 – #HIMSS12

WPC President Eric Mueller’s roundtable discussion offers real-world guidance to solve 5010 business problems to ease migration to ICD-10

LAS VEGAS-HIMSS Annual Conference-Feb. 20, 2012WPC, a full-service healthcare business process consulting organization in Brentwood, Tenn., announced today that it will exhibit its Security & Compliance and ICD-10 consulting practice solutions at the annual Healthcare Information and Management Systems Society’s (HIMSS) Conference this week in Las Vegas. Attendees can meet the WPC team and receive an overview of security solutions that optimize the safeguarding of protected patient data and address stringent HIPAA/HITECH regulatory demands at the Microsoft Corp. booth #1629 in the Venetian Sands Expo Center.

WPC will showcase its end-to-end analysis of processes, people and technology that have access to sensitive protected health information (PHI) to determine the right solutions to mitigate risk of data breaches, identity theft and fraud. WPC’s security solutions use a practical process in the assessment of a healthcare organization’s HITECH and HIPAA security compliance efforts as well as the preparation for and responding to data breaches.

The WPC team will provide an overview of its security solutions designed to:

  • Analyze how protected health information (PHI) and personally identifiable information (PII) is created, received, maintained or transmitted across the enterprise.
  • Identify who accesses PHI and PII as well as when, where, why and how it is accessed both within the organization and outside the organization by patients, partners and vendors.
  • Evaluate how technology, such as systems, networks, mobile devices, tablets and social media, should be secured to promote HIPAA/HITECH compliance.
  • Educate staff through training programs, policy and process review and input, and social engineering recommendations to increase employee awareness of responsibility for protecting PHI and PII in order to achieve compliance and guard against breaches.
  • Deliver solutions and test them with clients.

“We’re excited to showcase our Security & Compliance and ICD-10 solutions at this year’s premier healthcare IT event,” said Eric Mueller, services president, WPC. “The financial consequences of non-compliance with stringent HITECH regulatory demands for HIPAA violations can translate to millions of dollars lost and severe reputation damage. Healthcare organizations are faced with the challenge of driving innovation and superior health outcomes while simultaneously maintaining the increasingly high standards to protect health data. We take the business of healthcare security seriously, and we’re committed to helping our clients innovate while providing the very best security and compliance framework.”

“The WPC team has tremendous knowledge and expertise about the important issues affecting the industry,” said Michael Robinson, general manager, U.S. Health & Life Sciences, Microsoft. “We are working together to help healthcare organizations optimize their operational performance, and effectively manage complex business problems while preparing for future regulatory challenges.”

Additionally, HIMSS attendees can actively participate in Mueller’s roundtable discussion to gain real-world guidance from their peers as well as lessons learned from 5010 that can ease migration to ICD-10. According to Mueller, because there is room for error in all parts of the transaction process, it is imperative that providers understand each data point throughout the revenue cycle process and the types of decisions being made by payers, including how they are interpreting 5010 requirements. The session, “5010 Aftermath: What Worked, What’s Left and ICD-10 Preparation Tips,” is 9:45 a.m. PST, Thursday, Feb. 23, in Room Galileo 905.

About WPC

WPC is a healthcare industry leader, providing world class consulting solutions and serving as the exclusive publisher of critical HIPAA implementation publications and related products. Anchored by its nearly 40-year heritage, WPC provides technical, business process and compliance expertise. Its comprehensive solutions empower healthcare organizations to optimize operational performance and effectively manage complex business and technology change. Domain experts specialize in: ICD-10, security and compliance, electronic medical records adoption, health information exchange, payment reform, Accountable Care Organization qualifications, and more. For more information, visit wpc-services.com.

February 20, 2012 I Written By

Imprivata and PhoneFactor Partner to Provide Caregivers with Secure and Convenient Access to Protected Health Information (PHI)

Imprivata and PhoneFactor announced a reseller partnership to provide phone-based authentication services to Imprivata customers. The partnership builds upon existing technology integration between the two platforms, creating a joint solution that is offered along with Imprivata OneSign and OneSign Anywhere.

Leading healthcare organizations such as OhioHealth, Trinity Health and EMH have already deployed the joint solution to provide physicians and nurses with the convenience of authenticating via their phones to access Protected Health Information (PHI).

Imprivata to Resell Phone-based Authentication Solution for Mobile Physicians and Nurses

LEXINGTON, Mass. and OVERLAND PARK, Kan.–(BUSINESS WIRE)–Imprivata®, Inc., and PhoneFactor today announced a reseller partnership to provide phone-based authentication services to Imprivata customers. The partnership builds upon existing technology integration between the two platforms, creating a joint solution that is offered along with Imprivata OneSign® , an award-winning authentication and access management platform, and OneSign Anywhere™, which extends the benefits of OneSign to remote & mobile workers from a variety of endpoint devices. Leading healthcare organizations such as OhioHealth and EMH Healthcare have deployed the joint solution to provide physicians and nurses with the convenience of authenticating via their phones to access Protected Health Information (PHI).

Imprivata OneSign and OneSign Anywhere provide authorized doctors, nurses, and other care providers with fast and secure access to electronic medical records (EMR) and other applications, translating directly into improved clinician productivity and more time spent with patients. PhoneFactor allows clinicians the flexibility to use their existing phones to authenticate to their systems. For example, an authorized physician can receive an automated phone call or text message from PhoneFactor when logging onto the hospital’s system. The physician answers the call and presses # or replies to the text message to authenticate. This simple process provides the multi-factor security required by many regulatory agencies, including HIPAA and state pharmacy boards, yet is extremely easy to setup, manage, and use.

“For our customers, improved clinician satisfaction and productivity result in better patient care,” commented Ed Gaudet, Imprivata Chief Marketing Officer. “The joint Imprivata/PhoneFactor solution delivers an excellent method of strong authentication for physicians and nurses who are already accustomed to carrying their phones and need both on-premise and remote access to patient records.”

By leveraging a device every user already has – a phone – PhoneFactor enables rapid, cost-effective deployment of multi-factor authentication. There are no security tokens or other devices to provision and no software or certificates for end users to install. PhoneFactor integrates with AD and LDAP servers to streamline user management. Easy, automated enrollment and self-service options are available through the phone and web.

“Patients place a tremendous amount of trust in their healthcare providers and that includes an expectation that practitioners will safeguard their privacy,” said Tim Sutton, PhoneFactor CEO. “The joint PhoneFactor/Imprivata solution helps healthcare providers meet that expectation by ensuring that only authorized users have access to systems containing patient records. This is critical for regulatory compliance, but perhaps more importantly, is essential to maintaining patient trust.”

Supporting quotes:

“OhioHealth manages a large and diverse group of end users accessing healthcare data and systems from multiple locations and devices. It was extremely important to us to select a solution that provided the strong security required by regulatory mandates along with the mobility required by our healthcare practitioners. PhoneFactor’s phone-based authentication solution paired with Imprivata’s OneSign single sign-on solution addresses both requirements – providing easy and secure access to the data and tools clinicians need to practice medicine even when they are away from the hospital.” – Jim Lowder, Vice President, Technology, OhioHealth

“As healthcare delivery organizations extend the reach of their most critical clinical systems to remote locations and mobile devices, the demand for convenient and secure access increases. By combining single sign-on with phone-based strong authentication, particularly out-of-band approaches that mitigate man-in-the-middle and man-in-the browser attacks, healthcare delivery organizations can simplify clinician access to PHI while preventing unauthorized use.” Barry Runyon, Research VP, Gartner

About PhoneFactor

PhoneFactor is a leading provider of multi-factor authentication. The company’s award-winning platform uses any phone as a second form of authentication. PhoneFactor’s out-of-band architecture and real-time fraud alerts provide strong security for healthcare, enterprise, banking, and website applications. It is easy and cost effective to set up and deploy to large numbers of geographically diverse users. PhoneFactor has been named to the Bank Technology News FutureNow list of the top 10 technology innovators securing the banking industry today and recently earned a prestigious five stars in the SC Magazine multi-factor authentication group test. Learn more at www.phonefactor.com or follow PhoneFactor on twitter at @phonefactor.

About Imprivata

With more than one million healthcare users, Imprivata is the #1 independent provider of single sign-on and access management solutions for healthcare, government, finance and other regulated industries. By strengthening user authentication, streamlining application access and simplifying compliance reporting across multiple computing environments, customers realize improved workflows, increased security and compliance with government regulations.

Imprivata has received numerous product awards and top review ratings from leading industry publications and analysts, including a Strong Positive rating in Gartner’s 2010 ESSO Marketscope, the #1 ranking in the KLAS SSO Performance report and the #1 rating in 2010 Best in KLAS and Category Leaders report. Headquartered in Lexington, Mass., Imprivata partners with over 200 resellers, and serves the access security needs of more than 1,300 customers around the world. For more information, please visit www.imprivata.com or follow us on Twitter at @Imprivata.

September 22, 2011 I Written By

meridianEMR Files Lawsuit Against UroChart

The lawsuit contends that the defendants, including UroChart, obtained “access to meridianEMR’s data” and placed “patients in meridianEMR’s system at risk” and that the defendants, including UroChart, “have and have had unlawful access to patient information in violation of patient privacy rights.” In fact, meridianEMR’s complaint alleged that UroChart’s conduct was “willful and intentional with malice” and in violation of New Jersey’s Computer Related Offenses Act, among other claims.

Leading Urology EHR Company Committed to Protecting Patient Records and Its Proprietary Technology  

meridianEMR®, the Livingston, New Jersey-based market leader in Electronic Health Records (EHR) for Urology, formally announces that on June 16, 2011 it filed a lawsuit against Intuitive Medical Software® (UroChart®), based in Springfield, Missouri. meridianEMR filed its suit in the U.S. District Court of New Jersey. The lawsuit contends that the defendants, including UroChart, obtained “access to meridianEMR’s data” and placed “patients in meridianEMR’s system at risk” and that the defendants, including UroChart, “have and have had unlawful access to patient information in violation of patient privacy rights.” In fact, meridianEMR’s complaint alleged that UroChart’s conduct was “willful and intentional with malice” and in violation of New Jersey’s Computer Related Offenses Act, among other claims.

The issue came to light when meridianEMR’s Advanced Monitoring System instantly detected certain copying activities on a practice’s meridianEMR server. This system is one part of the security measures that meridianEMR provides to help protect patient data. meridianEMR responded immediately by contacting the practice. Further investigation resulted in the lawsuit, currently underway, in which the court on June 16, 2011 entered a Temporary Restraining Order against UroChart.

As part of its strong relationships with its clients, meridianEMR shares the responsibility of caring for patients’ Protected Health Information (PHI) in accordance with HIPAA regulations. meridianEMR filed the lawsuit as part of this responsibility. “It is our opinion that the actions taken by UroChart at one of our client sites could constitute a major threat to patient data security,” said Michael J. Custode, CEO, meridianEMR. “We filed a lawsuit against UroChart to, among other things, restrain such conduct.”

A “clone” server was referenced throughout the court documents. When questioned under oath as to whether “meridian software was on that clone server,” Richard Kroutil, Director of Technical Services, UroChart testified, “It was an exact replica of the meridian server.” According to a court transcript of the legal proceedings on July 21, 2011, the Honorable William J. Martini in the United States District Court for the District of New Jersey stated, “You have a right to protect your software content and your software program,” and that “The law says you’re not supposed to take another competitor’s trade secrets.”

“I have been in the EMR/PM industry for over 30 years and have never heard of a competitor directly copying another vendor’s software and entire system,” said Larry G. Drappi, EVP of Sales and Marketing, meridianEMR. “In my opinion, these are egregious actions.” meridianEMR always takes the protection of patient data extremely seriously. This is at the forefront of its concerns and is among the issues that prompted legal action. “In light of these recent events, we would also like to reassure our customer base that this lawsuit does not affect the privacy of their patient data, which remains secure,” stated Drappi. “One of the best ways to protect your patient records is to never, under any circumstances, provide anyone with your meridianEMR server password,” added Custode.

“meridianEMR adheres to best practices that are followed by all leading EHR companies,” said Custode. “As part of the principled way in which we conduct our business, we will work with our clients to ensure the privacy and ethical transfer of patient information whenever necessary, in adherence to industry best practices and in compliance with the law.”
About meridianEMR 

meridianEMR is the market leader in EHR for Urology, offering an interoperable solution compatible with physician practice management systems and advanced healthcare analytics. The meridianEMR, Inc. application is ONC-ATCB certified as a complete EHR, CCHIT certified® until 2014, and Surescripts certified. The interoperability of the meridianEMR software is driven by the proprietary mXchange™ technology, which services all meridianEMR clients through a private, highly secure, real-time data exchange network. meridianEMR has a user base of over 1,000 practicing Urologists nationwide comprised of a wide range of practice sizes.

Current meridianEMR Metrics:

  • 1,000+ Urology providers
  • 12,500 Urology staff users
  • 15 million mXchange transactions per day
  • 1.5 million active Urology patients
  • 50,000 e-scripts per month
August 22, 2011 I Written By

Healthcare Organizations Warned to Interrogate Their Fax Service Provider

Austin, TX – June 1, 2011 According to SecureCare Technologies, whilst faxing is ubiquitous in the healthcare industry, many businesses are violating the Health Insurance Portability and Accountability Act (HIPAA) because they fail to understand that some fax service providers routinely use email to transport Protected Health Information (PHI).  Therefore, despite the healthcare company believing they are compliant, their clients’ documents are actually at risk from interception due to the shortfallings in the technical nature of email delivery.

Most of these care givers are negligent simply because they believe that they comply with the latest HIPAA encryption regulations by using a third-party provider to outsource sending, receiving and managing sensitive documents. However, with current penalties for such violations ranging from $25,000 to $1.5million, the healthcare provider would be wise to investigate their fax service in detail. After investigation, should an individual knowingly continue to use a non-HIPAA compliant fax provider and put its client’s health information at risk, they may face a criminal penalty of up to $50,000 and a one-year imprisonment.

The third-party providers of fax services may not declare that they actually employ fax-to-email or email-to-fax technology but SecureCare Technologies gives four key examples to highlight why this method is negligent, irresponsible and illegal for transferring PHI data:

  • The content of any email can be intercepted multiple times en route to its final destination as it is read and stored by ISPs, servers, firewalls, virus checkers and unscrupulous ‘bots’ that harvest email data. Additionally, IT staff may be able to access emails, perhaps using traffic monitors or packet sniffers (that look for particular content or key words), at any of the points at which an email might be stored or through which it transits.
  • It is not just the email content that is at risk: typically 30% of emails contain attachments which are also at risk at each and every stage above. Some fax-to-email or email-to-fax providers claim to use protocols that ‘encrypt’ the attachment but all this does is put a ‘wrapper’ around that document, which if decrypted means the unauthorized party has the entire document intact.
  • If an unencrypted email that contains PHI is sent across the internet, a violation of HIPAA may have occurred even if the email was not intercepted. The fact that it was available for review by an ISP or a third party is enough to expose penalties under HIPAA.
  • Fax-to-email or email-to-fax systems make it difficult, if not impossible, to track missing faxes. Often there is no genuine audit trail at all and there are major limitations in tracking document delivery.

Aleks Szymanski CEO, SecureCare Technologies said: “Organizations that wish to successfully compete in the healthcare sector must deploy appropriate technologies to protect documents and data, at rest and during transmission. Failure to do so not only risks day-to-day patient confidentiality but can also jeopardize an organization itself through potential fine, reduction in customer confidence and loss of business.”

For over ten years, SecureCare has been committed to ensuring the highest standards of data security and privacy. Sfax is the companies’ flagship product which meets the compliance requirements for the Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX) and Graham-Leach-Bliley (GLBA). Sfax eliminates manual faxing and replaces costly and troublesome fax servers by removing the laborious process of printing, signing, re-faxing or scanning into an application – all with a complete audit trail.  It enables the user to handle more faxes at a lower cost with a smaller workforce while getting the ‘peace of mind’ of a proven secure faxing solution.

June 5, 2011 I Written By

EXTENSION, INC. Launches New Interactive Communications Solution

Device Messaging connects clinicians quickly, quietly and securely

 

FORT WAYNE, Ind. — May 25, 2011 — (BUSINESS WIRE) — EXTENSION, INC. announced that it has expanded its suite of solution offerings to include Device Messaging as a standalone solution.  “We have identified a need for marrying the corporate phone systems in healthcare that nurses typically use, with the smartphone platforms utilized by physicians for more efficient communication,” said Todd Plesko, CEO of EXTENSION.  “Most of us use text messaging in our daily lives – EXTENSION enables clinicians to securely emulate this functionality on their hospital’s communications network.”

EXTENSION Device Messaging includes the following features and benefits:

  • Non-SMS text-based messaging
  • Individual or Group Messaging/Texting
  • Pre-defined or Custom Messaging/Texting
  • Interactive Messaging – instant, two-way communication
  • Message/Text Forwarding
  • Intuitive, easily manageable interface
  • HIPAA-compliancy – authentication, encryption and logging

Device Messaging addresses a number of common complaints among providers of health services, primarily: the ability to quickly locate another clinician treating the same patient, the ability to contact another clinician via text without worrying that protected health information (PHI) is being shared in violation of federal law, and the ability to connect with another health care provider without disturbing the healing environment of patients. EXTENSION Device Messaging uses native apps on the iPhone and Android platforms to allow for secure, logged and auditable messaging between clinicians.

Device Messaging is integral to the forward-looking medical facility that is seeking to replace outdated pagers with feature-rich devices. EXTENSION is also capable of delivering messages to ANY device including iPhone, Vocera badges, Android, and Cisco and Ascom handsets, which allows healthcare professionals to continue using the device that they are already comfortable with. EXTENSION, INC. is planning to release support for even more IP phone system devices and smartphones over the coming months.

According to Plesko, “What we take for granted in our personal lives – the ability to send a quick, text-based message to let someone know we are running late to an engagement; to let our significant other know we will pick up dinner; to let our children know what time we will pick them up from practice – should also be available to us in our professional lives. Healthcare professionals in particular have a pressing need to connect with each other quickly, but they must be able to do so without compromising sensitive patient information. EXTENSION enables them to do just that.”

Visit http://opentheredbox.com/messaging.php to learn more about Device Messaging and other EXTENSION enhanced communications solutions.

About EXTENSION, INC.
EXTENSION, INC. is based in Fort Wayne, IN and is the developer of the EXTENSION® Solution Suite (ESS). The EXTENSION Solution Suite of software expands Cisco Unified Communications, Vocera badges, Ascom handsets, Apple iPhones, or Android-based smart phones into clinical workflow tools automating notifications using text messages, phone calls, and emails, as well as turning the devices into user interfaces for clinical, administrative, and revenue cycle data. The result of combining the aforementioned endpoints and EXTENSION includes increased physician, management, and patient satisfaction, reduced cost and errors, immediate ROI, and increased revenues. EXTENSION tightly integrates any HL7-based or web services-based medical application or device with corporate telephony systems, smartphones and other common healthcare communication devices using standards-based protocols. EXTENSION earned the ‘Cisco Collaboration Partner of the Year for the US/Canada’ award at the 2010 Cisco Partner Summit. Visit the Apple AppStore to download a free demo of EXTENSION Mobile for HealthAlert  for Nurses and HealthAlert for Physicians.

May 28, 2011 I Written By

DEMAND FOR PROOFPOINT’S SECURITY AND COMPLIANCE CLOUD SOLUTIONS GROWS IN HEALTHCARE

Leading Healthcare Organizations Choose Proofpoint’s Flexible Email Security Solutions for Industry Expertise, Cost Savings and Data Protection

SUNNYVALE, Calif. – February 22, 2011 – Proofpoint, Inc., the leading provider of cloud-based email security, archiving and data loss prevention solutions, continues to drive strong momentum in the healthcare industry with a growing number of healthcare customers that are deploying cloud solutions. Healthcare organizations rely on Proofpoint to help reduce email risks and costs, keep private data and protected health information (PHI) secure, and adhere to government regulations like HIPAA and HITECH. Proofpoint addresses these challenges by offering complete solutions in the cloud for email security and compliance, while also allowing customers to realize substantial cost savings, spend less time on administration and ongoing maintenance, and the flexibility to easily deploy new defenses for email as needs change.

“As compliance requirements increase, it is imperative that healthcare organizations, or any organization that interfaces with patient information, meet these increasingly stringent  requirements or risk paying millions of dollars in violations,” said Peter Galvin, chief marketing officer for Proofpoint. “More and more healthcare organizations are realizing that they need protection and are trusting cloud offerings from Proofpoint to seamlessly block malicious email messages, protect Personal Health Information  and keep up with the latest compliance regulations.”
Kelsey Seybold Clinic Reduces Email Security Costs by Moving to the Cloud
Kelsey Seybold Clinic is Houston’s oldest accountable care organization with more than 350 physicians practicing in over 50 medical specialties. The healthcare organization, an existing Proofpoint customer, is moving Proofpoint Enterprise Protection™ to the cloud after evaluating the cost savings.
“Kelsey Seybold has been very happy with Proofpoint’s protection offerings, but we were interested in finding out if there were ways to reduce infrastructure and resource costs by moving to a cloud-based solution,” said Martin Littmann, director IT systems, at Kelsey Seybold Clinic. “After comparing costs between different deployment types, we were convinced that moving Proofpoint’s protection solution to the cloud would save us time and money, and that our resources would no longer be stretched.”

Community Memorial Health Saw Proofpoint as Industry Experts
Community Memorial Health System (CMHS) is securing over 2,000 mailboxes in the cloud, recently choosing Proofpoint for its protection, privacy, and archiving solutions. CMHS provides healthcare services throughout Ventura County, California, and is a community-owned, not-for-profit organization. Prior to selecting Proofpoint, CMHS had issues with the encryption service it was receiving from another vendor and took notice of the Company’s list of healthcare customers.
“It was important that CMHS have a solution that could comply with HIPAA, but also protect users from both inbound and outbound email threats,” said Thomas Kniss, director of clinical information systems at CMHS. “Proofpoint has a very impressive list of current healthcare customers, and it was important that our vendor have experience and a successful track record of providing security solutions to healthcare organizations. Proofpoint’s knowledge and capabilities of smart identifiers and HIPAA dictionaries was a key deciding factor as well.”

Scottsdale Healthcare Protects Sensitive and Confidential Data
Scottsdale Healthcare is protecting approximately 5,000 mailboxes in the cloud with Proofpoint Enterprise Protection and Proofpoint Enterprise Privacy™. The healthcare organization needed spam and encryption technologies that were easy to implement, easy for users, and simple to maintain. Additionally, Scottsdale Healthcare recognized the benefits of Proofpoint’s cloud solution for privacy, helping the organization to easily comply with stringent privacy mandates such as HIPAA/HITECH and other regulations.

“We purchased the Proofpoint outbound email solution and it’s really cut down on potential compliance violations,” said Mike Gleason, director of information services at Scottsdale Healthcare. “For our organization, if any information in the body of an email or an attachment contains a social security number, a credit card number, patient identifier, or other sensitive data, it will be captured and secured. These types of data are automatically encrypted, and then forwarded on, which helps us avoid sending out emails that contain sensitive information or patient privacy data to domains outside our organization.”

About Proofpoint, Inc.
Proofpoint focuses exclusively on the art and science of cloud-based email security, eDiscovery and compliance solutions. Organizations around the world depend on Proofpoint’s expertise, patented technologies and on-demand delivery system to protect against spam and viruses, safeguard privacy, encrypt sensitive information, and archive messages for easier management and discovery. Proofpoint’s enterprise email solutions mitigate the challenges and amplify the benefits of enterprise messaging. Learn more at www.proofpoint.com.

Proofpoint, Proofpoint Enterprise Protection and Proofpoint Enterprise Privacy are trademarks or registered trademarks of Proofpoint, Inc. in the US and other countries. All other trademarks contained herein are the property of their respective owners.

February 21, 2011 I Written By

John Lynn is the Founder of the HealthcareScene.com blog network which currently consists of 15 blogs containing almost 6000 articles with John having written over 3000 of the articles himself. These EMR and Healthcare IT related articles have been viewed over 13 million times. John also manages Healthcare IT Central and Healthcare IT Today, the leading career Health IT job board and blog. John is co-founder of InfluentialNetworks.com and Physia.com. John is highly involved in social media, and in addition to his blogs can also be found on Twitter: @techguy and @ehrandhit.