CHRISTUS Health Selects HiSoftware for HIPAA Compliance within Microsoft SharePoint®

Share Article

Health System Chooses Compliance Sheriff to Monitor and Protect Private Patient Data

HiSoftware’s solution was ideally suited to manage all aspects of our compliance needs, including the reporting required for both internal management and external auditors – before, during and after the migration.

The rapid expansion of SharePoint 2010, in concert with increased enforcement of HIPAA guidelines at both the state and federal levels, is driving greater vigilance of patient data protection by hospitals and health systems around the country. In just the latest example of this growing trend, HiSoftware Inc., a leading provider of content-aware compliance solutions, today announced that Texas-based CHRISTUS Health has selected the company’s Compliance Sheriff solution for SharePoint data compliance system-wide.

Under guidelines such as HIPAA and the HITECH Act, SharePoint compliance is especially critical for healthcare providers and payers. With the responsibility to safeguard protected health information (PHI) and other personally identifiable information (PII), health organizations must turn a critical eye to content management systems like SharePoint that, when not properly managed, can pose a potential threat to data privacy and security.

HiSoftware Compliance Sheriff® for SharePoint® complements the powerful content publishing and collaboration features in SharePoint Server 2007/2010 by continuously auditing data and documents for compliance requirements such as privacy, data and information security, accessibility, site quality and brand integrity. Unlike other solutions, Compliance Sheriff allows users to easily define and configure tests for each organization’s unique privacy policies without costly consulting and/or programming resources. Along with the hundreds of checkpoints included in the Compliance Sheriff rules engine, including pre-defined checkpoint groups for HIPAA, users can easily create new “if/then/else” checkpoints with an intuitive visual interface.

Listed among the 10 largest Catholic health systems in the United States, the CHRISTUS Health system includes more than 40 hospitals and facilities in seven American states and Mexico, with assets of more than $4.4 billion. Today the organization maintains more than 700 SharePoint sites with 30,000-plus content contributors, all of whom are producing largely unstructured content.

As part of a larger SharePoint migration project, CHRISTUS needed to ensure that, despite disparate sources, only clean, compliant data was entering the new SharePoint environment.

“CHRISTUS Health is committed to proactively managing our data to ensure the privacy of our patients, and protect against potential data breaches,” said Brett Poirier, Director of Enterprise Solutions and Development, CHRISTUS Health. “We looked at several tools already in place for the migration and determined they were insufficient to manage this volume of sensitive data. HiSoftware’s solution was ideally suited to manage all aspects of our compliance needs, including the reporting required for both internal management and external auditors – before, during and after the migration.”

Once deployed, Compliance Sheriff for SharePoint will be used to scan existing content prior to it being moved into the new 2010 environment and then, working in concert with SharePoint workflows, prevent the publication of any new content that does not meet the required governance standards established by CHRISTUS Health. In addition to purchasing the Compliance Sheriff for SharePoint software, CHRISTUS Health has also engaged HiSoftware for technical support and training.

“We are seeing increased engagement from healthcare organizations that are concerned about HIPAA compliance as it relates to SharePoint,” said HiSoftware EVP Jeff Butts. “As with CHRISTUS, we are able to apply our rules engine to continually monitor both new and existing SharePoint content for a range of compliance mandates, while easily configuring new rules to address the specific data and privacy policies of our customers, even when they go above and beyond state or federal requirements.”

The SharePoint migration project will also provide CHRISTUS Health the opportunity to introduce new social networking functionality, while still maintaining the same governance standards in place for other data types. “Compliance Sheriff allows us to monitor a wide range of data formats and document types and flag them for potentially sensitive information,” added Poirier. “This means we can take advantage of new online collaboration channels, while giving us peace of mind that sensitive data is secure.”

About HiSoftware
HiSoftware is a leading provider of Web content and social computing compliance solutions for the monitoring and enforcement of risk management and privacy guidelines across digital environments. The company’s solutions provide a Governance, Risk Management and Compliance (GRC) platform for content management and collaboration processes that support corporate and brand integrity, site quality, accessibility and confidentiality for public websites and portals, as well as internal intranets and SharePoint sites. HiSoftware’s customers include some of the largest US and international government agencies, as well as Global 2000 companies. For more information, visit


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Chuck Tanowitz

Abby Lowe
Visit website