HIPAA & PCI compliance transcends traditional IT security and privacy controls to include business processing.
HIPAA EDI, PCI, and / or contact center compliance is a different nut to crack with management needing to decide whether to tokenize, mask, or ecncrypt PHI or CHD recorded data.
Beyond the need to notify some or all of the parties that calls may be recorded, management must decided whether to take an all or focused (PHI, CHD) protection strategy. Deciding factors include size, scale, geographic location, and / or the budget for protecting sensitive information.
No comments:
Post a Comment