HERNDON, VA, October 8, 2015 – Exostar, whose cloud-based solutions help companies in aerospace and defense, life sciences, and healthcare mitigate risk and solve their identity and access challenges, today announced a new milestone as it expands its healthcare industry business. The company’s applications and infrastructure supporting the handling, storage, and access of protected health information (PHI) and electronic PHI (e-PHI) fully comply with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulations and all subsequent amendments and updates.
Exostar retained outside legal counsel with HIPAA expertise to assess the company’s security policies and practices vis-à-vis the latest regulations identified in the 2013 HIPAA Final Omnibus Rule. Counsel has confirmed that Exostar policies, procedures, and documentation related to PHI and e-PHI all are HIPAA-compliant.
“We believe that our identity and access management and secure collaboration solutions, such as ProviderPass for compliant e-prescribing of controlled substances, offer compelling business value for health IT vendors, healthcare providers and payers, and others in the industry,” said Vijay Takanti, Exostar’s Vice President of Security and Collaboration Solutions. “Confirming full HIPAA compliance reinforces our commitment to organizations in the healthcare and life science vertical markets, who can more confidently than ever select Exostar to meet their security, performance, and compliance requirements.”
HIPAA was enacted to improve overall efficiency and information availability in the healthcare industry. The regulations also included security and privacy rules for electronic health records and related information, in the form of PHI and e-PHI (such as birthdates, social security numbers, and account numbers). The 2013 Final Rule contained updates to the HIPAA Privacy Rule, Security Rule, and Breach Notification Rule that define how healthcare providers and their business associates must further safeguard PHI and e-PHI. The latest Security Rule accounts for administrative (procedures, plans, and training), physical (facility and workstation controls), and technical (access, authentication, and audit) safeguards that align with Exostar’s core business proposition.