As we push forward with implementation, maintaining data security and regulatory compliance is a top priority. Today, members of the CEMI-DEEP project team attended a mandatory HIPAA Privacy Onboarding Training to ensure the highest standards of data stewardship during the implementation of Kindsight ascend.

The session was led by Maria Joseph, Chief Compliance and Privacy Officer at Weill Cornell Medicine. Joseph provided attendees with a comprehensive overview of the risks and obligations associated with accessing Protected Health Information (PHI) and Personally Identifiable Information (PII) during complex enterprise integration projects.

“Compliance and privacy are shared responsibilities,” Joseph underscored during the session, adding that protecting donor and patient trust is paramount.

Why This Matters for the CEMI Implementation

Integrating data into new, powerful systems like Kindsight ascend requires handling a vast array of confidential information. While we build robust, permanent controls into these new systems, project team members may have transient or incidental access to sensitive data. CEMI-DEEP includes PHI regulated by HIPAA, a federal law designed to safeguard confidential healthcare records and prevent unauthorized access or sharing without patient consent.

Key Takeaways from the Training

The onboarding session equipped the team with the necessary tools and knowledge to mitigate risks effectively. Key topics covered included:

As the implementation process continues, every team member is expected to approach their data stewardship responsibilities with the utmost care, sensitivity, and diligence. Thank you to the CEMI-DEEP team for making this critical training a priority and ensuring our new CRM environment remains secure and compliant.