Case Study: Kentucky Retirement Systems achieves HIPAA-compliant email encryption and breach protection with OpenText Cybersecurity

Kentucky Retirement Systems proactive in its approach to email encryption

Kentucky Retirement Systems (KRS) is the public pension and self-funded health insurer for more than 300,000 Kentucky government and public employees. With 250 staff and nearly 1,400 participating employers, KRS needed to protect members’ sensitive data—Social Security numbers, birthdates, addresses and account details—by encrypting outbound email and detecting potential breaches in inbound messages from business partners.

KRS deployed Zix Email Encryption and ZixGateway Inbound to provide automated and manual controls, using HIPAA and financial lexicons to scan outbound and inbound mail. Secure messages are delivered directly to recipients, daily inbound reports flag unencrypted partner transmissions, and incident/disclosure processes and partner education have enabled KRS to proactively identify vulnerabilities, notify affected members, and strengthen HIPAA compliance.

Kentucky Retirement Systems

Mark McChesney

Information Security Officer