Skip to content
    How Blumira Helps With

    HIPAA Compliance

    Blumira’s cloud security platform helps organizations easily meet and exceed HIPAA compliance monitoring and security controls. HIPAA (Health Insurance Portability and Accountability Act of 1996) is a federal law that protects the confidentiality of sensitive patient health information.

    Blumira Supports HIPAA Compliance

    The following guidelines illustrate how Blumira helps address the needs of HIPAA Phase 2:

    • Section 164.308(a)(1)(ii)(D)

      Section 164.308(a)(1)(ii)(D) 

      Information system activity review (required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.

    • Section 164.308(a)(5)(ii)(C)

      Section 164.308(a)(5)(ii)(C) 

      Log-in monitoring (addressable). Procedures for monitoring log-in attempts and reporting discrepancies.

    • Section 164.312(b)

      Section 164.312(b) 

      Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.

    • Section 164.316(b)(2)(i)

      Section 164.316(b)(2)(i)

      Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.

    • References

    Section 164.308(a)(1)(ii)(D) 

    Information system activity review (required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.

    Section 164.308(a)(5)(ii)(C) 

    Log-in monitoring (addressable). Procedures for monitoring log-in attempts and reporting discrepancies.

    Section 164.312(b) 

    Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.

    Section 164.316(b)(2)(i)

    Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.

    Get Started for Free

    Experience the Blumira Free SIEM, with automated detection and response and compliance reports for 3 cloud connectors, forever.