OSE_1309_part1_Layout 1 9/6/13 12:31 PM Page 42
LEGAL UPDATE
mandated by HHS.
3. Install and activate remote wiping and/or remote disabling functions.
These apps let you permanently delete data from or block the use of
lost or stolen mobile devices via another computer.
4. No file-sharing apps. Disable and do not install or use file-sharing
applications on mobile devices, so that users cannot connect to each
other to trade information.
5. Install and enable a firewall. This will protect against unauthorized
connections to your practice management or electronic medical
records systems.
6. Install and enable security software. This will protect against malicious applications, viruses, spyware and malware-based attacks, and
be sure to routinely update this software in order to maintain the
most effective protection.
7. Are those apps safe? Research mobile device apps before downloading them to avoid compromising your devices' and systems' security.
8. Maintain physical control of portable devices. Once they're off site,
the risk of loss or theft of equipment and data increases.
9. Secure connections only. Avoid at all costs the sending or receiving
of health information by way of public wireless Internet connections.
10. About those old computers. Delete all stored health information on
a computer or device before discarding, donating or recycling it.
After you've assessed the risks of and implemented safeguards and
policies for the use of electronic communications and mobile devices,
don't neglect staff education and continuing oversight. The privacy
and security of your patients' information depends on these steps
being carried out correctly and consistently. OSM
Ms. Dornfeld (ldornfeld@bracheichler.com) is a member of the healthcare practice
group at the Brach Eichler law firm in Roseland, N.J.
4 2
O U T PAT I E N T S U R G E R Y M A G A Z I N E O N L I N E | S E P T E M B E R 2013
