Case Study: CHS Health Services strengthens HIPAA and PCI DSS compliance with Thales e-Security Vormetric solutions

CHS relies on Thales e-Security solutions to provide sophisticated protection of client data

CHS Health Services, the industry’s largest independent provider of workforce health care solutions, needed to protect highly sensitive client data while meeting HIPAA requirements and, in some cases, PCI DSS requirements. The company also faced a closed-source EHR environment where native SQL TDE and other encryption options were costly, difficult to integrate, or required extra key management overhead. It turned to Thales e-Security for help securing data at rest without changing applications.

Thales e-Security provided Vormetric Transparent Data Encryption and Vormetric Key Management, which allowed CHS Health Services to encrypt data at the data level, manage keys, and implement role-based access controls. CHS said the solution avoided application changes, passed proof-of-concept testing without problems, and had a virtually imperceptible impact on performance in production. The company also said Thales e-Security reduced concerns about ongoing resource requirements and helped it meet HIPAA and PCI standards while improving control over sensitive records.

CHS Health Services

Joseph Johnson

CISO