HIPAA Compliance - Protect Private Health Information

How DMsuite™ Approaches the Problem

Guiding Principles of HIPAA

• All repositories of PHI need to be located
• Access should be limited to those who absolutely need to know
• Access to PHI should be constantly monitored
• The amount of PHI should be minimized through masking wherever possible.

DMProfiler, a component of DMsuite, is designed to locate and document all repositories of information in the enterprise, identifying those containing PHI so you know exactly what data to mask.

DMGenerator masks the PHI in nonproduction environments (without a need-to-know status).  The DMGenerator complies with HIPAA privacy and security rules when sharing patient/member data internally and externally.

DMCertify periodically evaluates and recertifies de-identified PHI to ensure that production data is not reintroduced into masked databases. DMCertify documents HIPAA-related practices for government audit purposes.

DMMonitor continually assesses PHI access, ensuring that only authorized personnel are accessing PHI. 

Improve the Efficiency of Existing Data Privacy Programs

There are many indicators of an inefficient PHI privacy program, including inconsistent, incomplete, or overlapping use of resources (people, process, and tools) for data privacy objectives, and a lack of any link between user entitlements and sensitive data. Inefficient programs lack cohesiveness, consistency, and integration, and can be unpredictable, inviting high levels of data privacy risk. DMsuite offers a single toolset—tools designed to work together to provide a complete solution.

Axis Technology, LLC can help you determine the unique benefits and ROI business case for your organization. Contact us to find out how DMsuite Data Masking Suite can help you with PHI process improvement, and help develop or mature your PHI data security program.