Based on the definition put forth by the Office of Civil Rights (OCR) “Summary of the HIPAA Privacy Rule” (http://www.hhs.gov/ocr/privacysummary.rtf), Techindia meets the criteria of a Business Associate. As required by the OCR, Techindia enters in to any and all business arrangements with a provider (covered entity) only after both parties having signed a Business Associate Contract in which “a covered entity must impose specified written safeguards on the individually identifiable health information used or disclosed by its business associates.”

Techindia has taken steps to insure the protection of personal health information (PHI). All records – paper and digital – are properly secured with no PHI accessible to non-employees of the company. Records – paper and digital – not retained are properly disposed of via data shredding. Network data cannot be accessed without proper login and password. Server activity is logged and monitored. PHI is not divulged by employees of the company for any reason other than the filing of paper or electronic claims. Any digital transmitted via the Internet is done so utilizing secure encryption technology.

Staff Education/Training: -
Frequent awareness programs cover all employees, old and new, periodically. Ongoing, online tests measure awareness and link HIPAA conformance to staff rewards. HIPAA resource directory is available on the Intranet to update employees on regulations, news and events.