PCI scope Blog Posts

Have a Safe Trip! Security Tips From Traveling to HIMSS19

As we pack our bags and prepare for HIMSS19 in Orlando, I
started to think about all the touchpoints where data and information can be
comprised when traveling. Even though travel and healthcare are two very
different industries, they both have multiple consumer touchpoints where
security can be compromised. Let’s take a look at what healthcare can learn
from traveling to HIMSS19.

Booking Your Flight

Today, most of us go online to book our flights and hotels
rooms. In just a few clicks, we can choose our

Tagged compliance, healthcare payments, HIMSS, HIMSS19, PCI scope, security, Security Corner

Being Better Together After a Healthcare Merger or Acquisition

Mergers and acquisitions have been making the news lately – Amazon purchased Whole Foods, Verizon bought Yahoo, Coach bought Kate Spade, WalMart bought Bonobos – these strategic acquisitions allow companies to grow by launching into other markets quickly.

We’ve been seeing this in healthcare, too. Individual providers are becoming networks of providers, and even teaming up with health plans to offer comprehensive healthcare services.

While M&A can accelerate progress in some areas for healthcare, it can slow organizations down as well. When

Tagged Integration, Mergers and acquisitions, PCI scope

The InstaMed Secure Token

Deliver a Seamless and Secure Online Consumer Payment Experience and Reduce PCI Scope Up to 90%

The InstaMed Secure Token enables healthcare organizations to deliver a seamless and secure online consumer payment experience within their existing portals with cardholder data never touching their servers. As a result, consumers can make one-time payments and also have full access to their digital wallet for future or recurring payments while using any device. Likewise, healthcare organizations significantly reduce their PCI compliance efforts and ensure

Tagged compliance and security, healthcare payment security, InstaMed Secure Token, PCI compliance, PCI scope

What Does it Mean to Offer a PCI-Validated P2PE Solution?

Guest blogger: Tim Winston CISSP, CISA, QSA (P2PE)

Many payment vendors claim to offer P2PE (point-to-point encryption) solutions but are not actually PCI-validated. What does it mean to offer a PCI-Validated P2PE Solution Provider? Tim Winston from Coalfire, a PCI SSC Qualified Security Assessor Company, answers some of the most frequently asked questions about P2PE solutions.

What is a QSA (P2PE)?

A QSA (Qualified Security Assessor) Company is recognized by the PCI Council as a qualified assessor of an organization’s adherence to PCI

Tagged P2PE, PCI compliance, PCI scope, PCI-DSS, PCI-Validated P2PE Solution Provider

Five Ways Providers Can Maximize Integration Benefits

Earlier this summer on the InstaMed blog, we talked about payment integration; specifically, why providers should integrate and how to integrate payment into existing systems and processes. Now that we’ve covered the why and the how, let’s talk about ways to maximize the benefits of payment integration.

Integration helps providers collect more efficiently. Embedded payment functionality allows payment information to automatically populate into your existing practice management system, which streamlines your processes and minimizes staff overhead. With greater efficiency, providers have

Tagged increase collections, integrated healthcare payments, PCI scope

What is Integration and How Can Providers Benefit?

Inefficient processes have long been prevalent in healthcare, especially when it comes to payments. Over the last few years, steady increases in patient responsibility and federally-legislated regulations and incentive programs have led healthcare organizations to invest in software and technologies in an attempt to scale the growing healthcare economy. As a result, your organization may be using multiple systems for billing, payments, patient records and more.

What challenge does this present to my healthcare organization?

The challenge is that these systems are

Tagged healthcare payment security, healthcare payments process, integrated healthcare payments, PCI scope

Introducing: Security Corner with Noah Dermer

Welcome to the Security Corner
Welcome to the first installation of InstaMed’s Security Corner, a monthly blog feature discussing important topics in compliance and security with me, Noah Dermer. I came to InstaMed in 2015 to join the Security and Compliance team. Previously, I was the Chief Security Officer at Epic Systems, where one of my responsibilities was building security into Epic’s enterprise applications. As Security Officer at InstaMed, my goal is to support our security and compliance mission as well

Tagged compliance and security, EMV, EMV Technology, healthcare payment security, P2PE, PCI compliance, PCI scope, PCI-DSS, security

Ask the Expert: EMV, Encryption and Reducing Your PCI Scope

Tony Hansen is a Payment Card Industry Professional (PCIP) at Providence Health Systems. Providence is the third largest not-for-profit health system in the U.S., operating 34 hospitals in five states. Earlier this year, Tony met with a group of Epic Users about the importance of EMV and how encryption helps reduce PCI scope and protect against the threat of fraud and stolen personal data.

Below are the insights and advice Tony shared regarding some of the most frequently asked questions about

Tagged best practice, compliance and security, EMV, HIPAA, PCI compliance, PCI scope, PCI-DSS

Blog Post Topic: PCI scope