PHI Data Protection & Discovery
According to the US Health Insurance Portability and Accountability Act (HIPAA), Patient health information
(PHI), also known as electronic Protected Health Information (ePHI), is any information about health
status, provision of health care, or payment for health care that can be linked to a specific individual.
It is interpreted rather broadly and includes any part of a patient’s medical record or payment history.
Spirion has specific technology for finding and protecting Patient Health Information.
Our proprietary algorithms perform a variety of real-time analytics to
maximize accuracy and minimize false positives. In addition to Spirion’s
sophisticated search algorithms for finding social security numbers (SSNs), credit card numbers (CCNs)
, and other types of patient health information, Spirion a provides a MultiFind
mode to facilitate finding combinations of data.
Simply configure MultiFind and specify which combinations of data you deem sensitive and let Identity
Finder discover only those locations that meet your specifications. Using MultiFind, users can hone
in on the type of sensitive information that their organization finds concerning and then take action
on this data. It also allows you to upload dictionaries. Doing so increases Identity
Finder’s vocabulary for terms you may deem sensitive. For example, many of our healthcare customers
upload an ICD9 dictionary and use this in conjunction with MultiFind to discover locations that include
both social security numbers and disease codes.
Using MultiFind to discover and protect sensitive information elevates your information security efforts
to the next level. Taking proactive action on sensitive information helps prevent data breaches and
align with various compliance requirements such as the Health Insurance Portability and Accountability