Morgan Records Management has been contracted as the legal custodian of records for Crozer Health. We are responsible for securely retaining patient health records and managing requests for copies of these records throughout the required legal retention period. While we wish we could provide copies at no cost, charges help us cover the fulfillment costs of providing records securely and promptly. Although there are some circumstances that prohibit or limit charges, these charges are generally permitted under state and federal laws and have been verified by legal counsel to ensure compliance.
At Morgan Records Management (MRM), we prioritize the confidentiality and security of our clients' information. Our services include secure electronic and hard copy records storage, expedited delivery, and destruction services, all designed to meet the highest standards of privacy.
Commitment to Security
We take pride in our state-of-the-art facility and robust information management system. Understanding the importance of security, we implement strict policies and training procedures to safeguard your vital information. Our comprehensive security measures protect against unauthorized access and disclosure.
Facility Security Measures Our facility is designed with multiple layers of security to protect your sensitive information:
Controlled Access: Entry to our facility is strictly controlled. Only authorized personnel have access to sensitive areas, with access logs maintained for monitoring purposes. Surveillance Systems: We utilize 24/7 video surveillance to monitor all critical areas of our facility, ensuring that any unauthorized activity is promptly detected and addressed. Alarm Systems: Advanced alarm systems are in place to provide immediate alerts in case of unauthorized access or breaches, ensuring swift response from security personnel. Fire Safety Protocols: Our facility is equipped with state-of-the-art fire detection and suppression systems to protect against potential hazards that could compromise your records. Environmental Controls: We maintain optimal environmental conditions, including temperature and humidity controls, to ensure the physical integrity of hard copy records. Compliance with HIPAA
MRM is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA), which sets stringent standards for the protection of sensitive patient information. We understand the critical nature of handling protected health information (PHI) and have implemented specific policies and procedures to ensure compliance.
HIPAA Training All employees undergo mandatory HIPAA training to understand their responsibilities in protecting PHI. This training covers the importance of confidentiality, data security measures, and the proper handling of medical records.
Secure Storage and Access We maintain secure storage solutions for PHI, with strict access controls to limit data access to authorized personnel only. Our systems ensure that PHI is encrypted both at rest and in transit, adhering to HIPAA's security requirements.
Business Associate Agreements (BAAs) We enter into Business Associate Agreements (BAAs) with our clients who are covered entities under HIPAA. These agreements outline our responsibilities regarding the safeguarding of PHI and clarify the protocols we have in place to protect client information.
Data Encryption All data stored and transmitted through our systems is encrypted using industry-standard protocols. This ensures that your information is protected both at rest and in transit, significantly reducing the risk of unauthorized access.
Regular Audits and Monitoring MRM conducts regular security audits and monitoring of our systems to identify and address potential vulnerabilities. We continually assess and update our security practices to stay ahead of emerging threats.
Incident Response Plan In the unlikely event of a data breach, we have a comprehensive incident response plan in place. This plan outlines immediate actions to mitigate any impact and ensures timely notification to affected clients, as required by HIPAA regulations.
Online Access Our online records management portal is available 24/7 and is secured with 256-bit military grade encryption. This ensures that your records are always accessible to you while remaining entirely confidential from others.
Data Retention and Disposal We adhere to strict data retention policies, ensuring that your information is retained only as long as necessary to fulfill our contractual obligations. When it is time to dispose of records, we employ certified destruction methods, ensuring that all data is irretrievable.
Exceeding Standards We are confident that our services provide a level of privacy and security that surpasses typical systems available at client locations. Our technology, policies, and procedures are all meticulously designed to prioritize your security.
Support and Communication We are dedicated to delivering exceptional service and support to your company. Should you have any questions or feedback, please do not hesitate to reach out. We are here to assist you in any way possible.
Thank you for choosing Morgan Records Management!