Ok, so I would like to create a branding company, and we just scratch the surface of the pharmaceutical data collection. I am a little versed in HIPAA compilation, but I think where I am fuzzy.
A). when collecting data through the form I need to delete the credentials. Ie store it through separate tables, etc. B) who / what has access to functions / procedures for unencrypted storage of any data. FROM). Can a database be a MySQL database? D) Do I need certification / approval / license to do this?
Basically, what I need to do, in addition to encrypting the data and storing it on a server compatible with HIPAA. I want to receive customer data through the form. Thanks!
source share