• About SXC
• Leadership
• Investor Relations
• News & Events
• Careers
• Contact

HIPAA

SXC has a team dedicated to the analysis and implementation of items mandated by HIPAA Administrative Simplification.  This includes the transaction standards, code sets, and the rules concerning privacy and security. 

Completed in March 2002, SXC implemented the transaction standards and code sets, which included the following:

• Payment Reconciliation standard X12N 835,

• Enrollment standard X12N 834,

• Full support for the NCPDP 5.1 claim transaction standard.

Organizational changes and education were completed in March 2003, as SXC developed and implemented training for all SXC employees, addressing the privacy standards, including minimum necessary and use, and disclosure based on HIPAA policies and procedures.  The minimum necessary information was defined on a job-by-job basis and security measures were introduced or enhanced to control access to Protected Health Information (PHI) based on this analysis. 

Since 2003, SXC has undertaken a number of initiatives over the past two years to ensure that its software and services comply with the security provisions of the HIPAA legislation due to take effect in 2005.  Again, education has been in the forefront as we have worked to ensure that all of our staff is continually trained and mindful of these provisions in their responsibilities.  Additionally, we have undertaken efforts in four other major areas over this time period, including: administration; physical safeguards; technical security services and network security.