Our last post highlighted security from a patient’s point of view. Now let’s talk about security from a healthcare provider’s POV.
We take our responsibility to providers very seriously, and in turn, providers who use doxy.me also have a responsibility to maintain security. Some of these go hand in hand with HIPAA/HITECH and some are simply common sense, namely:
- Install and maintain antivirus and firewall programs suitable for your compliance and security needs.
- Sign the Business Associates Agreement found within your account dashboard.
- Password protocols: don’t share your login email and password with other providers; don’t reuse old passwords that may have been compromised, and use the provided password strength indicator to ensure your password is strong and complex.
- Keep your browser and operating system up to date for the greatest protection and that the platform works as intended. In order to use doxy.me, both patients and providers are required to use the most up-to-date editions of these browsers and will be notified if an update is needed. We believe this is a far safer means of providing telemedicine than building a proprietary application.
- Properly authenticate the patients you meet with before you exchange any sensitive information during a call. We don't require patient authentication because we don't have any information to check against. You, as the provider, do, and you’re the best person to verify the identity of the patient. This can be as simple as asking for a form of identification or verifying information you have on file.
With these simple precautionary measures in place, doxy.me is the easiest way for providers to meet with their patients securely.