This is what we start with – what is HIPAA, who does it pertain to, what is staff responsible for.

There’s more to understanding PHI than just the data. A focus on behavioral security is needed to keep PHI as safe as possible.

We teach our methodology and processes in internal work to reinforce securing data and to maximize self reporting.

Since many staff work from home, an awareness of the difference in home life vs office life is detailed to help staff identify better ways to behave and keep information secure.

At home means that security is not overseen in person by IT and security staff so education in secure practices and setup is required to reduce breaches and malware infections.

Two things have been identified that improves both reporting and behavior and compliance to standards. It’s understanding of the reasoning and basis behind why the procedures should be followed and also to help bridge the cultural differences. We have implemented an Ethical Company Project to address the gap. This project is undertaken to both reflect management goals and directives and align staff to the type of company Xilium aspires to be.