Transmission Security

This Technical Section task requires agencies implement technical security measures to guard against unauthorized access to EPHI that is being transmitted over an electronic communications network.

For most agencies the methods that are used to transmit EPHI data are not under their control. Medicare and Medicaid dictate how you must transmit to them. In both cases however, you have user names and passwords. These items should be treated the same as your network user names and passwords, with the highest level of security. Only those users that need access to these processes should have these passwords.

Remote updating or syncing of data for nurse's laptops also fall under this task. You must have user names and passwords for any user that is connecting and transmitting EPHI data from outside your office. These passwords must be kept secure.