As patient responsibility continues to grow, consumers are using their credit cards at hospitals more than ever. PwC estimates that 5% of healthcare provider revenue today comes through credit card transactions, a percentage that likely will double by 2020. As a result, card associations are paying more attention to PCI compliance at healthcare providers. For Epic users, meeting the lowest PCI scope requires security measures to prevent the transmission of card data to your network. This needs to cover both staff-entered payments through Resolute (payments in person / over the phone) and patient-entered through MyChart (payments online). With the right methodology, providers are able to decrease the risk of card data theft and reduce PCI scope.

Learning Objectives:

• Recognize potential security threats and vulnerabilities of MyChart
• Identify how to mitigate financial risk when selecting a secure payment solution
• Differentiate PCI-validated solutions from non-validated solution, and recognize why it is important. 
• Evaluate the practical application of a PCI-validated P2PE and secure iframe solution

David King, CTO at OnPlan Health