DBAsupport.com Forums - Powered by vBulletin
Results 1 to 2 of 2

Thread: Hippa Compliant architecture

  1. #1
    Join Date
    Apr 2014
    Posts
    1

    Lightbulb Hippa Compliant architecture

    Hi,

    I am developing a medical billing software and should be HIPAA compliant. Currently I have designed the application as one database per tenant. But I need to change that architecture to use a Multi tenant database. Is there any problem with HIPAA for using a Multi tenant database. If no then, is it possible to get any valid document/proof describing the architecture compliance.

    Any help will be highly appreciable,

    Thank you.

  2. #2
    Join Date
    Nov 2000
    Location
    Pittsburgh, PA
    Posts
    4,166
    I am no expert on HIPAA, however, you can create local usernames in one tenant database that only have rights
    to that database. Which should help with the HIPAA requirements. To me this is not really a database question,
    its a HIPAA question. You need to define how you keep people from one tenant database from seeing anything
    in a different tenant database. Also focus on granting privileges based on the least amount of privileges needed
    to access the application.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


Click Here to Expand Forum to Full Width