|
|
|
| Security |
|
What rules govern the use of immunization registries?
|
- Health Information Portability and Accountability Act (HIPAA):
HIPAA allows public health entities such as immunization registries to securely exchange personal health information (PHI) related to immunizations with authorized agencies.
- California Health and Safety Code Section 120440:
This code was specifically established to govern who can access immunization registries, what information can be maintained, and how this information can be used. CAIR conforms to all requirements of this code.
|
|
How is the information in CAIR kept secure?
|
Privacy, confidentiality and security are top priorities for CAIR. The registry software has been designed to protect patients' rights to privacy, provide data security and allow providers to meet their obligations to protect patient confidentiality. The software and CAIR policies and procedures are in compliance with the Health Insurance Portability and Accountability Act (HIPAA) as well as other state and federal laws.
CAIR has established policies to further ensure the privacy and security of patient information.
- Privacy:
- All participating providers/agencies and individual users must sign confidentiality agreements.
- All users receive training related to protecting the confidentiality of CAIR data.
- Unique passwords are required to access data in CAIR.
- Security:
- The CAIR software has been designed, and is updated regularly, to meet industry standards to protect patient information from being shared with unauthorized sources.
- Authorized users access CAIR through a secure Internet connection, and servers are secured by multiple firewalls.
|
|
