We are proud to announce that following an assessment, the Citrix ShareFile Cloud for Healthcare has achieved compliant status under Sword & Shield Enterprise Security’s HIPAA Compliance Program (HCP).
Additionally, we have received the Sword & Shield “HIPAA Compliant” seal, which assures users that ShareFile has implemented the necessary security measures to safeguard protected health information (PHI) and electronic PHI as required by the Health Insurance Portability and Accountability Act (HIPAA) of 1996 and the Health Information Technology for Economic and Clinical Health (HITECH) Act.
This award validates how using ShareFile supports compliance with HIPAA for healthcare companies and providers. ShareFile includes many features designed to support compliance with industry regulations, including the recent addition of providing protection for both email attachments and messages using high-grade encryption.
To conduct its assessment, Sword & Shield analyzed Citrix processes, controls and policies against the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) audit protocol. This audit protocol contains the requirements that are assessed through performance audits and investigations. The Gap Analysis methodology used by Sword & Shield is based in part on guidance from the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-66, An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, published in October 2008.
Entities that earn the “HIPAA Compliant” badge have experienced a Risk Assessment & Gap Analysis within the past 12 months. Notably, the “HIPAA Compliant” status reflects that ShareFile has no very high, high or moderate findings.
More details on this award can be found at Sword & Shield’s HCP Attestation Gallery. This status is valid through July 31, 2016.