The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is Federal legislation that describes US-wide standards for the protection of personally-identifiable patient health information from non-consensual exposure and misuse.
GoodAccess is a HIPAA-compliant network security solution that can help you protect your network and systems and reinforce your supply chain.
No card needed. Full onboarding support.
Why us?
What is HIPAA compliance
Over the years, HIPAA underwent revisions to include provisions that mandate the adoption of protocols that protect the privacy of both physical and electronic personally identifiable health information. The act obliges not just health care providers, but also their business partners and emphasizes compliance across the vendor delivery chain.
At present, HIPAA’s provisions stand on five fundamental rules:
Gateway network
Starter is a free business VPN that creates a secure VPN infrastructure for your virtual organization. Every time a user connects, GoodAccess automatically seeks out the nearest gateway location with the lowest latency and assigns an IP address dynamically. This enables secure private browsing and encrypted remote access to IT resources for your coworkers, even if they connect through public Wi-Fi.
Threat protection
Starter comes equipped with Threat Blocker, an always-on feature that stops phishing, malware, botnets, ransomware ploys and other online security threats before they hit the user and breach your network. Learn more about GoodAccess Threat Blocker.
Goodaccess app
GoodAccess comes with one-click applications for iOS, macOS, Android, Windows and ChromeOS. No configuration is needed. Just invite your colleagues via email to create their account and get the GoodAccess app.
Privacy Rule
The Privacy Rule obliges covered entities and business associates to implement standards and procedures to prevent any non-consensual disclosure of patient information. All the standards and procedures must be thoroughly documented and employees must be trained in these policies every year.
Security rule
All electronic patient health information must be protected against exposure and potential sharing. Covered entities and business associates must ensure the integrity and safety of electronic patient information with physical, administrative, and technical safeguards. These safeguards and procedures of their use must be thoroughly documented and staff annually trained.
Enforcement rule
The Enforcement Rule outlines investigations, penalties, and hearings as a result of HIPAA violations. Among others, it authorizes Federal bodies to impose monetary fines on covered entities and business associates for non-compliance with the Act.
Breach notification rule
In the event of a breach, covered entities and business associates must report the incident according to the requirements depending on the breach’s scope and size. Specific reporting protocols change depending on the type of breach, but all breaches regardless of size must be reported to the HHS OCR.
Omnibus rule
The Omnibus Rule extends the scope of the HIPAA regulation on business associates, in addition to covered entities. Business associates must follow rules for contracts between them and covered entities and must be HIPAA compliant.
hipaa compliance
GoodAccess provides a Zero-Trust Network Access as a Service solution (ZTNAaaS), which means it can help you check off requirements related to network security and data protection.
testimonials
Benefits
GoodAccess is a customer choice among cloud-based zero-trust solutions. We are GDPR, HIPAA compliant and have passed ISO 27001 and SOC 2 certification.
Filter out non-compliant devices to reduce the risk of breaches. Define your device security policy and enforce it from the central console.
Assign access on a least-privilege and per-app basis centrally and easily.
Apply a protective layer over all your users and resources, wherever they are. Enforce the same level of security throughout multi-site and multi-cloud environments.
Protect data and user identity during transit with strong, unbroken encryption.
Monitor activity on the level of systems and gateway, locate breaches and configuration issues, feed the logs to a SIEM.
Prevent unauthorized access with MFA before allowing access to internal systems.
Configure your secure GoodAccess secure environment in high-availability to ensure continuous protection.
We are open about our limits. GoodAccess is an essential component of your security ecosystem that complements other security solutions.
Enforce your security policy centrally and ensure no user accesses critical resources without satisfactory authorization.
Schedule a call with the GoodAccess success manager to get all the details about our product features.