This section describes how the Commvault software addresses the following HIPAA rules:
- "Implement policies and procedures to protect electronic protected health information from improper alteration or destruction.” (Integrity, Section 164.312(c)(1))
Administrators can identify a specific set of information to be retained for a specific length of time.
Legal Hold
Identify and segregate relevant data that is found during a data discovery operation and preserve it for a long term.
The Legal Hold feature uses a highly accurate policy based approach to search and restore legal information from backups and archives or any electronically found data (for example emails and files) and retain a subset of the data for long term retention. This feature is especially useful, when you have to search legal data from multiple retention policies and archive them to a Legal Hold with a specific retention policy.
For a comprehensive description of the Commvault Two-Factor Authentication feature, see Case Manager.
Identification
Use the Compliance Search feature to:
-
Perform data searches.
-
Review the results before you begin to add data to an Export Set, a Review Set, and Legal Hold.
-
Determine the location of potentially relevant information, and categorize it by factors, that include data type, size, and location.
-
Determine the custodian of data, and map the data to computers, shares, and data repositories.
Collection and Preservation
Use the Compliance Search feature to:
-
Backup and content index the data from workstations, laptops, network shares, email servers, databases, and structured data repositories, incliuding SharePoint and Documentum.
-
Filter data for a backup and content indexing so that only the relevant information is collected.
-
Collect and process data with no disruption to the original files.
-
Handle large data sets
-
Index both the document metadata and content
For a comprehensive description of the Commvault Compliance Search feature, see Compliance Search Overview.