Who We Serve
Legal and compliance teams focused on the integrity, security, find-ability, and interoperability of health information need solutions that deliver. This includes the quick eDiscovery of protected health information to comply with audits or legal investigations as well as the ability to share records with consumers in accordance with the 21st Century Cures Act. Harmony Healthcare IT supports these needs by migrating historical patient, employee and business records from disparate legacy systems into a secure and accessible active archive.
EHRs get replaced, and often it makes fiscal and functional sense to migrate the last two years of key data into the go-forward system. Record retention requirements can span ten to 25+ years, which makes an active archive with robust search features a viable solution on all fronts. With HealthData Archiver®, legal and compliance teams can retain required records for the duration of the retention period, mitigate legal and security risks, and define a long-term data governance plan that maximizes technology to secure records in a HIPAA-compliant format.
“We recommend healthcare records are readily available, searchable and maintained in a secure system for the required timeframe for each specific record.”
Finding patient, employee and business records to prep for litigation doesn’t have to be a tall order. An active archive supports accurate, efficient, and cost-effective records management and eDiscovery. Secure and searchable, HealthData Archiver®—with its consolidated, discrete data stores—simplifies eDiscovery requests. It also lowers eDiscovery costs. This matters, as there often are 1,000 pages discovered vs. the 1 page actually entered as an actual exhibit in major trials, and eDiscovery costs can range from $5,000 to $30,000 per gigabyte.
There is a lot to track and manage in terms of patient document and record retention. When determining how to comply with state regulations regarding legal record retention requirements, legal and compliance retention teams need to consider their strategy that may include:
As the #1 most cyberattacked industry, healthcare is getting hit hard. And, of the 93% of providers who were breached in recent years, more than half were breached again (and even again multiple times). Network servers are almost always the target for hacking-related breaches with legacy electronic medical record keeping systems providing easy entry points for attack. In a HIMSS cybersecurity survey, 69% indicated that they had some sort of legacy operating systems in place. An active archive provides a secure path forward and an opportunity to consolidate and decommission legacy servers which decreases risks.
Privacy and security for your legacy data stored in an archive is as important as for active EHR records. Within HealthData Archiver®, rights and activities can be restricted and audited by user, role, group, and data domain/source with built-in, role-based security and access controls. User audit logs are HIPAA-compliant and include the unique user ID, data subject ID, function performed, and date/time event was performed. With Third-Party Auditing Integration, unusual user activity may be monitored to prevent internal threats.
Protecting the privacy and security of all medical records, both current and legacy— including those of high-profile patients—is important. HealthData Archiver® has numerous features built-in to manage, audit and protect legacy health records. Break the Glass provides:
Information about the legal aspects of an enterprise-wide approach to data retention.
Copyright 2018 Compliance Today, a publication of the Health Care Compliance Association (HCCA)
Learn how legacy data management planning can help deflect cybersecurity attack.