Home » The Lowdown on PCI Compliance for Hospitals

The Lowdown on PCI Compliance for Hospitals

How to Keep Your Payment and Patient Data Safe and Secure

Medical centers and medical insurance providers are top hacking targets. Why? Because they are essentially “one stop shops” for full consumer profiles, allowing hackers to access a plethora of sensitive and confidential data.

The bad news
This data includes not only credit card information, but also consumer identifiers such as date of birth, social security number, address, telephone, email and more. This treasure trove of information can allow hackers to perform very extensive identity thefts, and it often carries some of the highest prices in online hacker markets.

PCI: protecting you
Payment Card Industry (PCI) requirements exist to protect credit card data, but may also help with HIPAA compliance by protecting sensitive patient information and safeguarding personally identifiable information (PII) and other sensitive details if implemented for these purposes.

The good news
While medical centers may be in hackers’ crosshairs, they also offer an ideal structure for protection against hackers. Allow us to explain. The fact that hospitals tend not to integrate credit card payment data with patient services, inventory or other data means they offer an excellent environment in which to deploy point-to-point encryption (P2PE).

What is P2PE? If you guessed a droid from Star Wars, you’d be wrong. P2PE is a state-of-the-art credit card security solution. A standard established by the PCI Security Standards Council, P2PE is delivered by a third party solution provider, and is a “combination of secure devices, applications and processes that encrypt data from the point of interaction (for example, at the point of swipe or dip) until the data reaches the solution provider’s secure decryption environment.”

WRF has your back
At Wind River Financial (WRF), we know our P2PE. We have successfully partnered with several health care organizations in strategically deploying P2PE solutions. We’ve worked with these clients to understand and strategize payment industry compliance and risk to ensure that credit card data is protected from hackers. But don’t take our word for it, check out some of our testimonials to hear from the clients themselves.

Interested in learning more? Contact us to discuss your organization’s needs and find out how WRF can help you choose a P2PE solution that will keep your patient and payment information safe and secure.

Leave a Reply