Evaluation of the Personal Health Record Pilot for Medicare Fee-For Service Enrollees from South Carolina. Security


All the informants reported that CMS has stringent data security requirements by which the contractor and both subcontractors abided.  To ensure that HealthTrio met the CMS security requirements, they conducted a security audit and consequently addressed issues related to documentation of security procedures. CMS initially requested three-zone architecture to meet Federal Information Security Management Act (FISMA) security guidelines. HealthTrio worked closely with CMS to ensure the appropriate level of security standards and safeguards were in place.[31]

View full report


"report.pdf" (pdf, 1.89Mb)

Note: Documents in PDF format require the Adobe Acrobat Reader®. If you experience problems with PDF documents, please download the latest version of the Reader®