Purpose: This document details the steps we take to ensure the privacy and security of your protected health information (PHI) while allowing you to connect with healthcare groups that provide you with their services.
Summary: Solera ensures the safety of your health information in digital storage, like a virtual, locked file cabinet. As part of this, Solera obeys all laws on securing your protected health information and keeping it private.
In the world of healthcare, information security is vital. Companies that deal with patient’s personal health information must meet key healthcare regulations for securing all data. When health information was only on paper, security was as simple as using a locked file cabinet. Present day, with the rise of digital information, companies need guidelines for how to store digital information securely and protect it from online threats.
The HIPAA Security Rule is the first set of national standards for protecting digital health information. The goal of this rule is to protect digital information that identifies you, while still allowing healthcare providers access to the information they need.
The HITECH Act gives more severe penalties for not protecting data. Solera Health fully understands these rules and has added security to our digital storage of your health information. This makes Solera Health a leading Cloud Solutions Integrator in healthcare.
To confirm our security, we have undergone a SOC 2 Assessment.
Service Organization Control (SOC) is a set of compliance requirements and auditing processes targeted for third-party service providers. It was developed to help companies determine whether their business partners and vendors can securely manage data and protect the interests and privacy of their clients. SOC 2 (System and Organization Controls 2) is a type of audit report that attests to the trustworthiness of services provided by a service organization. It is commonly used to assess the risks associated with outsourced software solutions that store customer data online.
A SOC 2 Type 2 report is an internal controls report capturing how a company safeguards customer data and how well those controls are operating. These reports are issued by independent third-party auditors covering the principles of Security, Availability, Confidentiality, and Privacy.
The core of SOC 2’s requirements the five trust principles, and must be reflected in Solera’s policies and procedures.
Summary: We understand that Protected Health Information (PHI) is personal and private, and we are dedicated to keeping your PHI secure yet accessible as needed for your healthcare.
Part of Solera’s business is an exclusive Platform as a Service (PaaS), meaning it provides the structure to connect various groups to the information they need to provide you their service. Examples would be chronic disease prevention programs, such as the Centers for Disease Control (CDC) and Prevention’s National Diabetes Prevention Program.
We use technology to help others with: service referrals, reimbursement and payment, managing data, enrollment, and boosting consumer engagement.
Our protection of your information includes all administrative, technical, and physical safeguards needed. We store all Information you provide with an authorized and secure cloud services provider. You can read more about this at: https://soleranetwork.com/privacy-practices/
Summary: Solera Health has years of experience building large scale software solutions and running secure online services using a robust set of security technologies and practices.
To safeguard your information, we:
Summary: Solera employs many solutions to encrypt protected health information while allowing it to still be usable to authorized groups.
Solera’s platform encryption service protects data by using strong, certified standards. It does this while making every data field encryption-aware at the metadata layer, so that features that use encrypted fields still function. There’s no reason to sacrifice usability for security within the Solera platform.
To protect your data from threats, we:
Summary: Solera Health meets the highest standards required by laws, and takes the steps needed to continue this.
To confirm that our services meet the highest standards, we:
For any questions regarding Data Security or Compliance processes involving Data Security, please contact Solera Health’s Compliance at: firstname.lastname@example.org