HIPAA

Data protection policies in various industries, like HIPAA for health care, aim to keep the average consumer's personal data safe. Understanding the direct implications compliance policies have on mobile device management is a challenge for many users. That being said, here's everything you need to know about HIPAA and mobile device management.

What is HIPAA?

HIPAA stands for Health Insurance Portability and Accountability Act. It was proposed in 1996 with two main goals: First, to protect health insurance coverage for workers and their families in the event that they change or lose their job. Second, to establish national standards for electronic health care transactions. It was further modified to create requirements for the privacy and security of individually identifiable heath care records, and this is where mobile device management comes into play.

How does Mobile Device Manager Plus help?

Here are all the ways Mobile Device Manager Plus can help you achieve HIPAA compliance:

Requirement Requirement Description How Mobile Device Manager Plus fulfills it?
164.308 (1)(ii)(B) Implement security measures sufficient to reduce risks and vulnerabilities to a reasonable and appropriate level Mobile Device Manager Plus allows admins to apply various restrictions and policies that help ensure data security on mobile devices.
164.308(5)(ii)(D) /164.310(c) Procedures for creating, changing, and safeguarding passwords.

Mobile Device Manager Plus lets admins enforce stringent passcodes on mobile devices based on the organization's requirements.

164.308(5)(ii)(B)

Procedures for guarding against, detecting, and reporting malicious software.

Mobile Device Manager Plus allows admin to detect unauthorized apps in the mobile devices. Additionally the admins can blacklist these apps from the managed devices.
164.310(a)(2)(ii) Implement policies and procedures to safeguard the facility and the equipment therein from unauthorized physical access, tampering, and theft.

Mobile Device Manager Plus helps set appropriate passcodes to restrict physical access to devices and also provides various security commands to help retrieve the devices and data

164.310(d)(2)(ii)

Implement procedures for removal of electronic protected health information from electronic media before the media are made available for re-use

Mobile Device Manager Plus allows the admins to deprovision the devices before the devices are re-used. This wipes the devices completely before being handed to another employee.

164.312(a)(2)(iv)

Implement a mechanism to encrypt and decrypt electronic protected health information.

Mobile Device Manager Plus supports complete device encryption which encrypts the data stored in the devices.