Protected health information (PHI) is heavily regulated under HIPAA, but the exact details can be confusing. The regulations are designed to keep everyone’s private information safe, but they also put a significant amount of responsibility on businesses. HIPAA regulations apply to just about every aspect of a person’s medical information, including their transit, storage and […]
We received this questions via Ask Erik from a Physicians’ Association: “Our company website does not contain any patient information. As a healthcare group, do we need to worry about HIPAA compliance for our site? It contains forms, news and some company polices and procedures but no patient information whatsoever. Thank you.” Thank you for […]
Theft of Medical records is booming. Over the past few years, large scale breaches have become more common and increasingly severe. Last year in June, a hacker named thedarkoverlord was selling 650,000 US healthcare records as part of a long-running crime spree. The collection was listed on a deep web marketplace called the Real Deal […]
We received this questions via Ask Erik from the head of a Dental Practice (who wished to remain anonymous): “I want to create a Refer-a-Friend program, for a dental practice, that will be managed by a third party marketing agency. The third party needs only my patient names and address to do an on-going e-mail […]
Here is a question from “Ask Erik:” Dear Dr. Kangas, When I write an email to a patient from my LuxSci account, it is encrypted and therefore HIPPA compliant. When they write me back from their regular email address (it’s often hard to get them to sign up at LuxSci), they are putting [PHI /Medical […]
