In a recent presentation, entitled “RBAC and HIPAA Security”, Uday O. Ali Pabrai, Chief Executive Officer of the HIPAA Academy, spelled out Seven Steps to HIPAA Security Compliance. They include HIPAA Requirements, the Seven Steps to HIPAA Security Compliance, Access Control and Role-Based Access Control.
The updated guidelines were published last month to provide HIPAA minimum security requirements in achieving compliance.
Role Based Access Control (RBAC) was the focus of this year’s report, stressing the several advantages of RBAC over other access control mechanisms. Users are only given access privilege rights necessary to perform their duties or job function.
Arend Verweij, Chief Executive Officer of IDdriven stated, “It goes back to how to allow access rights to employees and partners, and keeping the bad actors out of your IT environment. We are very excited to see that one of the key features of IDdriven, namely RBAC, is now being recognized to be the de facto policy for Hospital systems and other healthcare providers under HIPAA.”
He added, “This is at the heart of what role we were designed to fulfill for these entities. We know we can help them become compliant and make their lives easier.”
Mr. Verweij warned that HIPAA fines may be looming for others that lack appropriate access management controls. In a recent publication of Bloomberg BNA’s Health Care Daily Report, it was reported a Florida hospital was fined $5.5M to settle a private patient record breach. The fine could be a landmark event in healthcare and open the floodgates of penalties from mismanaging access rights. It was uncovered current or former hospital employees were selling confidential patient health records.
Mr. Verweij stated, “With IDdriven, role-based access control is automated and has a Certification Module built in, which makes it easy to regularly review employee rights to access information. IDdriven is easy to use, and simple to implement.”
With its next-generation IDaaS program of the same name, IDdriven, Inc. is at the forefront of the new breed of Identity Management and Access Governance solutions. Taking the complexity and upfront costs out of implementation, IDdriven automates access security for vulnerable company assets by seamlessly integrating with the solutions from Microsoft, and other cloud providers like Amazon. Founded in 2013, IDdriven is headquartered in Sacramento, California. To learn more, visit: www.IDdriven.com.
Forward-Looking Statement Disclosure
This news release contains “forward-looking statements.” Such statements may be preceded by the words “intends,” “may,” “will,” “plans,” “expects,” “anticipates,” “projects,” “predicts,” “estimates,” “aims,” “believes,” “hopes,” “potential” or similar words. Forward-looking statements are not guarantees of future performance, are based on certain assumptions and are subject to various known and unknown risks and uncertainties, many of which are beyond IDdriven’s control, and cannot be predicted or quantified and consequently, actual results may differ materially from those expressed or implied by such forward-looking statements. Such risks and uncertainties include, without limitation, risks and uncertainties associated with (i) commercialization of our software programs, (ii) development and protection of our intellectual property, (iii) industry competition, (iv) we may need to raise capital to meet business requirements. More detailed information about IDdriven and the risk factors that may affect the realization of forward looking statements is contained in our filings with the Securities and Exchange Commission which are available on our website and at www.sec.gov. IDdriven assumes no obligation to publicly update or revise its forward-looking statements as a result of new information, future events or otherwise.