Healthix / SHIN-NY Policies

Healthix Privacy and Security Policies and Procedures

Healthix Privacy and Security Policies provide a common and consistent framework for the exchange of patienhealth information through Healthix and the Statewide Health Information Network for New York (SHIN-NY)Data governance is covered in the Healthix Bylaws.  Should you wish to receive a copy of the Healthix bylaws, contact us at compliance@healthix.org.

 

Healthix Security Policies and Procedures (Download PDF)

TABLE OF CONTENTS 

Section 01 : CONSENT
Section 02 : AUTHORIZATION
Section 03 : AUTHENTICATION
Section 04 : ACCESS
Section 05 : PATIENT ENGAGEMENT AND ACCESS
Section 06 : AUDIT
Section 07 : BREACH
Section 08 : HIPAA COMPLIANCE
Section 09 : SANCTIONS
Section 10 : EMERGENCY ACCESS/DISASTER RECOVERY
Section 11 : PRIVACY AND SECURITY GOVERNANCE
Section 12 : PATIENT PORTAL

ATTACHMENT A: Authorizers Users – Role Based Access Standards

Statewide Health Information Network of New York (SHIN-NY) Privacy and Security Policies

SHIN-NY Policies and Procedures (Download PDF)

 

Public Availability of Audits

Healthix conducts annual audits and makes the results available upon request. The following audit reports will be available upon completion: 

  • User Audit – Completed 
  • User Identify Audit – In Progress 
  • Consent Audit – In Progress 
  • Certified Application Audit – In Progress  

To request information contact compliance@healthix.org