Email encryption is one of the strongest defenses that an organization can implement against data breaches brought on by the improper disclosure or distribution of medical records or protected health information (PHI). But without written policies and procedures governing the use of encryption services, these efforts mean next to nothing in the eyes of HIPAA auditors who have been redoubling their efforts to investigate non-compliance across the health care industry.
Small business are not ‘under the radar’ of government enforcement for HIPAA privacy and security rules. Not only is the government issuing meaningful fines to small businesses for non-compliance with these data privacy rules, they are explicitly stating that regardless of the size of the firm, whether a small physician’s office or insurance broker, they will hold everyone accountable.
Importance of HIPAA Compliant for Electronic Signatures in Standardizing Electronic Health Care Transactions
RE: Required Patient and Beneficiary Authorizations, Notices and Acknowledgments
Unlock Permitted Cost Savings and Time Efficiencies
People often view HIPAA as a burden – heightened regulatory enforcement related to data protection and privacy. It is. However, most overlook the efficiencies that HIPAA permits.
The following article, written by Jon Neidiz, a partner in Nelson Mullins Riley & Scarborough’s Atlanta office and co-leader of the Firm’s Information Management Practice, is a useful short summary for those considering HIPAA privacy issues in the context of email – and RMail’s email encryption service. Key to using email encryption for compliance with regulations is ensuring that the sender organization has an auditable proof record of compliance – the focus of RMail’s email encryption service that is accomplished by return Registered Receipt™ email to the sender’s organization. Neiditz’s article follows: