Which two measures should an Architect recommend to help ensure that the app is compliant with HIPAA?

A hospital wants to build a mobile app that allows patients to check the status of submitted insurance claims, which the hospital stores in Salesforce Health Cloud. The app’s back end will run on Heroku.

Which two measures should an Architect recommend to help ensure that the app is compliant with HIPAA? (Choose two.)
A . UseHeroku Shield Connect to sync claim data from Salesforce to a Heroku Postgres database.
B . Use only Heroku Shield Postgres databases to store claim data outside of Salesforce Health Cloud.
C . Ensure that the back-end application’s code encrypts all claim data before writing it to a Heroku Postgres database.
D . Ensure that the mobile app can only run when on the hospital’s intranet, which is connected to the back end’s Shield Private Space via VP

Answer: A, B

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments