First Choice Health Protects Patient Data & Meets HIPAA Compliance

“We never have to worry about what may happen when someone plugs a device into one of our machines.

AccessPatrol has made our lives easy. We just set it, forget it, and it works!”

Nicholas Scheetz

IT Service Desk Supervisor & System Administrator, First Choice Health

CurrentWare Customer Sessions & Kimball LLPAbout the Company

First Choice Health is a managed care services provider that distributes its array of healthcare products and services to over one million people in the United States.

An innovative alternative to traditional healthcare, the First Choice network helps reduce costs while maintaining quality and convenience.
Headquarters
Seattle, Washington
Industry
Healthcare
   
Business Type
B2C
Company Size
400+ Employees

CurrentWare Products Used
access patrol

First Choice Health Protects Patient Data & Meets HIPAA Compliance

“We never have to worry about what may happen when someone plugs a device into one of our machines.

AccessPatrol has made our lives easy. We just set it, forget it, and it works!

Nicholas Scheetz

IT Service Desk Supervisor & System Administrator, First Choice Health

CurrentWare Customer Sessions & Kimball LLPAbout the Company

First Choice Health is a managed care services provider that distributes its array of healthcare products and services to over one million people in the United States.

An innovative alternative to traditional healthcare, the First Choice network helps reduce costs while maintaining quality and convenience.

Headquarters
Seattle, Washington

Industry
Healthcare

Company Size
400+ Employees

Business Type
B2C


CurrentWare Products Used
access patrol

 

Searching for a Solution

As an American healthcare services provider, First Choice Health has a duty of care to ensure that the sensitive electronic health records (EHR) of their customers are secured in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

To meet HIPAA compliance, covered entities need to address key vulnerabilities such as the security risks associated with portable storage devices including USB flash drives, mobile devices, and portable hard drives.

Unrestricted access to USB ports facilitates the unauthorized copying of data to removable media and the use of portable storage devices which could be infected with malicious software.

For the healthcare industry as a whole, insider threats pose a significant risk; Verizon’s 2018 Protected Health Information Data Breach Report (PHIDBR) found that 58% of data breaches in the healthcare industry involved insiders.

“The user-friendly interface meant we were able to get the software up-and-running extremely quickly.

It worked perfectly and provided all of the functionality we were looking for while also helping us comply with HIPAA.”

Nicholas Scheetz

IT Service Desk Supervisor & System Administrator, First Choice Health

Securing Protected Health Information

To protect against this prominent threat First Choice Health knew that they needed endpoint data loss prevention software with USB control features.

As a technical safeguard,, AccessPatrol provides several key protections against portable storage devices:

  • Custom Permissions
    Assign read-only, no access, and full access for USB devices based on user, device, or organizational unit.
  • USB Control
    Prevent employees from using unauthorized devices that can be used to transmit ransomware and illicitly exfiltrate data.
  • File Transfer Visibility
    Alert administrators to suspicious file activity and maintain an auditable log of files that have been copied, created, and deleted on USB devices.

Security Without Sacrificing Productivity

In addition to meeting their USB security requirements, AccessPatrol provides First Choice Health with an easy-to-use interface where they can effortlessly adjust their removable media policies on an as-needed basis.

With AccessPatrol’s granular USB control policies it was simple to provide exceptions to those that needed it, such as providing photographers from their HR team with access when their cameras were plugged into their computers.

This flexibility was essential for keeping data safe without interrupting the efficiency of patient care and day-to-day operations.

With AccessPatrol, we’re certain we’re meeting today’s cybersecurity standards whilst maintaining immediate, reliant access to patient records so we can keep delivering a high-quality service to our clients.”

Nicholas Scheetz

IT Service Desk Supervisor & System Administrator, First Choice Health

FCH’s USB DLP Strategy

When implementing AccessPatrol, First Choice Health blocked access to all portable storage devices that were not specifically on their Allow List.

This combined with AccessPatrol’s USB activity reports gave them the ability to closely monitor and control how sensitive EHRs were stored and transferred by their employees.

Daily USB activity reports were automatically provided to designated staff members so they could audit the logs for suspicious activity.

CurrentWare

Get Started Today
With a Free Trial

Fully functional. Easy to use. Install in minutes.

More CurrentWare Case Studies

Government election security

CurrentWare Safeguards the Integrity of State and Local Elections

first choice health Case Study

First Choice Health Protects Patient Data & Meets HIPAA Compliance

boston centerless Case Study

Boston Centerless Scales Production With the CurrentWare Suite

Viking Yachts customer spotlight

Viking Yachts Protects Intellectual Property From a Departing Employee

CurrentWare industry spotlight: Financial services

How CurrentWare Helps Financial Services Protect Data & Meet Productivity Goals

CurrentWare government industry solutions spotlight

How CurrentWare Helps Governments Meet Compliance & Streamline Operations

CurrentWare industry spotlight: Legal services

How CurrentWare Helps Legal Services Manage Insider Threats & Staff Productivity

shady maple Case Study

Shady Maple Takes Back Control Over Employee Technology Use

Tennessee college of applied technology crump Case Study

Local College Keeps Its Students and Systems Safe From Internet-Based Threats

sessions and kimball Case Study

Employee Monitoring Makes Remote Work Possible for S&K Law Firm

Tamice Case Study

Tamice Completes Their DLP Strategy With USB Security Software