Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Under HIPAA, can we e-mail patient information outside of our health care organization?

e-mail health care hipaa organization outside patient information
0
Posted

Under HIPAA, can we e-mail patient information outside of our health care organization?

0 CommentsAdd a Comment

1 Answer

0

It depends on what you are e-mailing and for what purpose. Under HIPAA privacy you are not permitted to send out information for marketing purposes. Moreover, the HIPAA rule on security does not prohibit the use of e-mail. It is covered under the section, of “Data in transit,” which specifies the use of encryption and access controls. According to the final Security Rule, published in February 2003, encryption of e-mail is an addressable standard, rather than a requirement. Refer to the earlier guidelines published by the Centers for Medicare and Medicaid Services (CMS), formerly HCFA, on Internet Security Policy (http://www.cms.hhs.gov). Before sending e-mail, providers should consider the nature of the information being sent, the purpose for sending it, and whether it is necessary to use the Internet to transmit the information. Because the Internet is an “open” network, information can be intercepted by the wrong party if the proper precautions aren’t taken.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.