![[ Visit Client Website ]](images/banner.gif)
Background
Sharing and storing digital patient photos occurs daily in plastic surgery. Two major risks associated with the practice, data theft and Health Insurance Portability and Accountability Act (HIPAA) violations, have been dramatically amplified by high-speed data connections and digital camera ubiquity. We have reviewed what plastic surgeons need to know in order to mitigate those risks. We discuss how properly implemented cloud storage solutions (CSS) can meet plastic surgeons' needs while maintaining HIPAA-compliance.
Methods
Through informal discussions with plastic surgeons, we identified the most common photo sharing and storage methods. For each method, a literature search was performed to identify the risks of data theft and HIPAA violations. HIPAA violation risks were confirmed by the middle author, a compliance liaison and privacy officer. A comprehensive review of HIPAA-compliant CSS was performed. When possible, informal interviews with CSS representatives were conducted.
Results
The most common sharing and storage methods are not HIPAA-compliant, and several are prone to data theft. Our review of CSS identified six HIPAA-compliant vendors who have strong-to-excellent security protocols and policies. These options are reasonably priced.
Conclusions
Digital photography and technological advances offer major benefits to plastic surgeons, but are not without risks. A proper understanding of data security and HIPAA regulations needs to be applied to these technologies in order to safely capture their benefits. CSS offers efficient photo sharing and storage with layers of security to ensure HIPAA compliance and mitigate data theft risk.
Table 1: Comparison of HIPAA Compliant Cloud Storage Hosts
A variety of cloud hosts boast HIPAA compliance with flexibility of storage capacity and pricing to fit the needs of different practices.