Citrix Addresses HIPAA Compliance With ShareFile Cloud For Healthcare

Printer-friendly version Email this CRN article

With the recent updates to the Health Insurance Portability and Accountability Act Omnibus, Citrix ShareFile unveiled on Tuesday its updated and new virtual private cloud solely for the healthcare market.

ShareFile, owned and acquired by Citrix in October 2011, offers a file-sharing, cloud-based storage platform. The Raleigh, N.C.-based company is leveraging the latest ShareFile Cloud for HealthCare to healthcare providers in keeping up with Protected Health Information (PHI) compliance, said Cameron Jahn, product marketing manager of Citrix.

"HIPAA compliance is a partnership between ShareFile and customers and we wanted to be transparent as possible to educate our customers around it," said Jahn. "It’s a confused marketplace with a lot of different legislation in the healthcare space that has recently come down to how you have to protect and secure health information when transmitting and storing it."

Among the different vertical markets Citrix covers with ShareFile, the company is currently involved with 1,500 healthcare organizations, said Jahn. While ShareFile is run on Amazon Web Services (AWS), Citrix divvied ShareFile Cloud for Healthcare to its own set of virtual servers just for PHI.


[Related: Obamacare Site Not HIPAA Compliant, Doesn't Need To Be]

"Before we had all of our industries in AWS but with compliance use cases and large penalties in place, we felt it was a significant enough use case to segment it out, put healthcare into its own," said Jahn. "Once a customer comes to us with PHI, and signs our Business Associate Agreement, we segment out their data into a dedicated virtual private cloud," said Jahn.

According to Jahn, some health care organizations are still inattentive and oblivious to the HIPAA Omnibus rules. Not adhering to the rules will result in hefty fines, said Jahn.

"Basically, there is a lot of unawareness in the marketplace around what needs to be done in remaining compliant with the HIPAA Omnibus Rule," said Jahn. " Being unaware of the laws is not acceptable anymore, and the fines could be up to a couple hundred dollars to $50,000. If you're willfully negligent, the fines can carry up to a million and a half dollars."

By simply signing the Business Associate Agreement, a contract between ShareFile and the customer, healthcare organizations storing and protecting PHI will benefit from ShareFile Cloud for Healthcare, said Jahn. It is also available for all ShareFile accounts at no additional cost.

"This will benefit anybody in healthcare, in the insurance space with claims, legal space with medical malpractice, and finance space with investments," said Jahn. "Anybody using ShareFile Cloud for Healthcare [is] technically compliant with the HIPAA rule. There is additional security because it's a dedicated virtual private cloud in Amazon only for PHI and increased privacy, protected by ShareFile's Business Associate Agreement."

NEXT: Cloud Reduces Cost For Healthcare Organizations

Printer-friendly version Email this CRN article