The Healthix Privacy and Security Policies provide a common and consistent framework for the exchange of patient health information through Healthix and the Statewide Health Information Network for New York (SHIN-NY). Data governance is covered in the Healthix Bylaws. Should you wish to receive a copy of the Healthix bylaws, contact us at firstname.lastname@example.org.
Healthix adopts a continual data security improvement model. We invest in the people, processes, and technology to exceed data privacy requirements. Healthix adheres to both HIPAA and HITECH requirements and has also earned HITRUST CSF Certification for information security.
We use state-of-the-art technologies that actively block would-be attackers, alert us of potential attacks, and protect our servers. Our technologies include:
As a steward of data for over a thousand organizations in the network, Healthix is deeply committed to protecting the privacy of patient information. We follow the New York Department of Health Policies developed for Health Information Exchange providers and regularly perform audits to monitor access to patient data.
Healthix has a range of cybersecurity programs including;
Healthix conducts annual audits and makes the results available upon request. The following audit reports will be available upon completion: