hipaa

Ok so I would for a branding company and we're just scratching the surface of collecting pharma data. I know a bit about HIPAA com pliancy but I guess where I'm fuzzy is.. A). when collecting data via a form, do I need to de-identify the data.. I.e. store it across separate tables etc. B). who/what has access to the functions/procedures to unencrypted any data stored. C). Can the database be a MySQL database? D). Do I need a certification/approval/license to do any of this? Basically what do I need to do, besides encrypting the data and storing it on a HIPAA compliant server. I want to capture

When a foreground app gets backgrounded (e.g. Home button gets pressed), how can I change elements on the topmost view controller prior to when iOS takes a snapshot of it and starts the animation to show the next screen? I ask because I'm writing an app requiring HIPAA compliance, and I am concerned that the snapshot that the OS takes in order to do this animation sometimes contains sensitive data which should not be visible even for a split second when the app gets foregrounded later. I'm aware that view controllers have lifecycle methods such as viewWillDisappear which might be usable, but I

Is it possible to run apps on Heroku that are HIPAA compliant? More specifically, I need two apps, one that stores member information and another that stores private health information of the members. I intend to encrypt sensitive data using both asymmetric and symmetric key encryption–asymmetric for the keys that link members with their sensitive data on the other app, and symmetric for specific fields in the members app, such as name, email address and phone. My main concern is that anyone at Heroku can break the asymmetric encryption, since they have access to both apps (and private keys).

As it currently stands, this question is not a good fit for our Q&A format. We expect answers to be supported by facts, references, or expertise, but this question will likely solicit debate, arguments, polling, or extended discussion. If you feel that this question can be improved and possibly reopened, visit the help center for guidance. What are some develper tools other than Altova Mapforce for mapping HIPAA X12 such as the 837, 835, 277? A new Web API for EDI claims is the ClearEHR Health Insurance Claims API - this tool doesn't map the data, it replaces the need for any EDI data