HIPAA Complaint

As defined by HIPAA’s privacy rule “A Business Associate (BA) is any person(s) or entity, which performs a function or activity on behalf of a Covered Entity (CE) and involves the use or disclosure of Protected Health Information (PHI).”

JSTL thus constitutes a Business Associate. With full awareness of the sensitivity and importance of PHI, JSTL has instituted stringent protocols to ensure no exception to compliances. Our network features a highly secure firewall for complete safekeeping of all client records with mandatory encryption of every single electronic claim during transmission. All employees undergo mandatory security briefings to keep them abreast with the updates in HIPAA requirements and to help them excel in our unflinching commitment to information confidentiality.

Our uniquely designed workflow which helps us to ensure HIPAA compliance includes:

• A confidentiality agreement with every JSTL employee, which mandates non-disclosure of any confidential Information

• Penalizing violations of this agreement by outright termination of service

• Stringent, round –the-clock physical and electronic security of our facility with clearly delimited restricted access spaces and biometric screening for entry

• Password-secured, limited-privilege access to computer systems with uniquely identifiable log-ins

• Periodic shredding of all physical documents containing any PHI data

• Connection to the client’s servers through secure VPN tunnels with 128-bit encryption

• Backup and restoration followed as per the standard operation procedures and company policies

• Professional oversight of compliance protocols by a compliance officer for unexceptionable adherence