Data Security for HIPAA & HITECH Regulations

Electronic protected health information (ePHI) refers to any protected health information (PHI) that is created, stored, transmitted, or received electronically and is subject to federal Health Insurance Portability and Accountability Act (HIPAA) regulation.

This type of highly sensitive patient data – often dealing with current health status or healthcare services received – is required to be protected and secure under HIPAA Privacy and Security Rules and the HITECH Act.

Encryption and key management renders ePHI unusable, unreadable, or indecipherable to unauthorized individuals. In the event of a data breach, encryption can help organizations protect sensitive PHI and may enable them to claim “Safe Harbor.”

Gazzang zNcrypt for Health Care™ can be applied easily, quickly, and economically as a solution for data privacy and security requirements defined within HIPAA and HITECH. Through AES-256 encryption, advanced key management, and process-based access controls, zNcrypt provides transparent data encryption for any database or application running on Linux, including big data environments. 

Additionally, Gazzang zTrustee™ protects the Gazzang cryptographic keys with several layers of advanced techniques to ensure the key is only accessible by authorized parties.