Skip to main content

Overview

This guide covers security best practices for configuring ScaleHouse Systems in a HIPAA-compliant manner.

Access Control

Strong Passwords

Use strong, unique passwords for all accounts

Multi-Factor Authentication

Enable MFA for all user accounts

Role-Based Access

Assign appropriate roles to team members

Regular Reviews

Review access permissions regularly

Data Protection

  • All data encrypted in transit (TLS)
  • All data encrypted at rest
  • Database credentials encrypted with Windows DPAPI
  • Enable audit logging in your PMS
  • Monitor audit logs regularly
  • Review failed login attempts
  • Regular backups of compliance data
  • Test backup restoration procedures
  • Store backups securely

Connector Security

1

Secure Installation

Install connector on a secure, dedicated computer.
2

Limit Access

Restrict physical and network access to connector computer.
3

Monitor

Monitor connector status and logs regularly.
4

Update

Keep connector software up to date.

Compliance

ScaleHouse Systems is designed to help you maintain HIPAA compliance, but you are responsible for ensuring your overall compliance program meets all requirements.

Next Steps

Frameworks

Track HIPAA requirements

Training

Security training modules