Welcome to Portal

?Unknown\pull-down

Welcome to Zoho Cares

Bienvenido a Soporte de Zoho

Search our knowledge base, ask the community or submit a request.

HIPAA Compliance in Qntrl

Introduction

The Health Insurance Portability and Accountability Act (including the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act) ("HIPAA"), requires Covered Entities and Business Associates to take certain measures to protect health information that can identify an individual. It also provides certain rights to individuals.
 
Qntrl does not collect, use, store or maintain health information protected by HIPAA for its own purposes. However, Qntrl provides certain features (as described below) to help its customers use Qntrl in a HIPAA compliant manner.
 
HIPAA requires Covered Entities to sign a Business Associate Agreement (BAA) with its Business Associates. You can request our BAA template by sending an email to legal@zohocorp.com.
 

HIPAA compliance in Qntrl

Workflows of health care organizations can be automated using Qntrl and hence safely preserving the electronic health records of these organizations in Qntrl is crucial.
 
To ensure the security of your information, we support the following actions in Qntrl:
 
  1. Mark ePHI (Electronic Protected Health Information) or Encrypt fields in forms.
  2. Set roles and privileges for users.
  3. Export audit logs to monitor operational activities.
 

Mark ePHI or Encrypt fields in forms

You can mark a field as ePHI if it contains the health information of your customers or patients. ePHI field values will be encrypted, both in transit and at rest. 
 
To mark fields that contain personal health data:
  1. Navigate to  and select Orchestration.
  2. Select the Orchestration from the list.
  3. You will be navigated to Step 1: Create Form. Hover over the field that you would like to mark as PHI and select .
  4. Choose Edit Properties in the dropdown.
  5. Toggle the button next to Encrypt or PHI to turn it ON/OFF.
  6. Confirm your action and click OK.
  7. Save the Orchestration.
 

Set roles and privileges for users

Each user added to Qntrl can be set a profile and multiple roles based on which their level of data access will depend in the Qntrl organization. Additionally, each field in the form can also be set privileges for read or write access.  
 

Audit logs

Audit log allows you to track the actions executed by users in your organization along with a trail of automated events that are configured to be triggered. If you want to preserve this log for a long period, you can periodically export it using the Export Audit Log option.
 
If you have any other queries on the features of Qntrl that supports HIPAA compliance, please email us at support@qntrl.com

Helpful?10
Updated: 2 years ago
Share :
Follow

Subscribe to receive notifications from this article.