Data Encryption Requirements for HIPAA Compliance
- In Motion - All sensitive electronic health and medical records data with patient health information, such as SSNs, patient diagnoses, medical histories, are encrypted using 256-bit secure sockets layer (SSL) to ensure HIPAA transmission security.
- Backups - Giva encrypts all backups of customer data, which may include PHI from electronic health and medical records. HIPAA-compliant security controls are in place to limit and log all access to any backups.
- At Rest - Giva meets HIPAA data at rest encryption requirements; all customer data, including PHI from electronic health and medical records, is encrypted when at rest.