... Skip to main content

Health Insurance Portability and Accountability Act (HIPAA)

Security Rule 45 CFR § 164.306

Data Security

Security standards: General rules.

(a) General requirements. Covered entities and business associates must do the following:

(1) Ensure the confidentiality, integrity, and availability of all electronic protected health information the covered entity or business associate creates, receives, maintains, or transmits.

(2) Protect against any reasonably anticipated threats or hazards to the security or integrity of such information.

(3) Protect against any reasonably anticipated uses or disclosures of such information that are not permitted or required under subpart E of this part.

(4) Ensure compliance with this subpart by its workforce.

HIPAA covered entities must protect the security, confidentiality, and availability of electronic protected health information.

data privacy regime possibility
How Can We Help?

Theta Lake's Compliance Solutions

The HIPAA security rule requires that any covered entity holding electronic protected health information (“ePHI”) must protect its security, confidentiality, and availability.  Given the rise in the use of telehealth applications to facilitate remote care, covered entities are undertaking significant efforts to secure ePHI.

Theta Lake’s AI-enabled detections allow covered entities to find ePHI like Social Security Numbers, birthdates, policy numbers, and email addresses in what was shown, shared or said during collaboration interactions. Once identified, Theta Lake can redact ePHI in video, audio, and text to ensure that they do not proliferate during review and oversight processes.

Finally, Theta Lake facilitates comprehensive search across collaboration data to identify ePHI in any collaboration conversation, including content shown through web cams, in whiteboarding sessions, or displayed in screen shares.