Ask Erik: Is misaddressed email a HIPAA breach?
December 8, 2017
??
Tag: hipaa
Am I at HIPAA-risk if a patient replies to my secure email message?
January 31, 2017
Here is a question from “Ask Erik:” Dear Dr. Kangas, When I write an email to a patient from my LuxSci account, it is encrypted and therefore HIPPA compliant. When they write me back from their regular email address (it’s often hard to get them to sign up at LuxSci), they are putting [PHI /Medical […]
Next Generation Data Loss Prevention (DLP) with LuxSci Secure Email
September 29, 2015
Data Loss Prevention (DLP) describes a plan for companies to control the sending of sensitive data. E.g. this can include controls to stop the flow of sensitive data or to ensure that sensitive data is always well-encrypted (for compliance) when sent. In the context of email, DLP is usually achieved through the following formula: Construct a […]
Are you Minimizing your Risk by using the Next Generation of Opt In Email Encryption?
September 11, 2015
We have long held that leaving it to each sender/employee to properly enable encryption for each sensitive message (a.k.a “Opt In Encryption”) is too risky. Why? Any mistake or oversight immediately equals a breach and liability. Instead, LuxSci has always promoted use of “Opt Out Encryption,” in which the account default is to encrypt everything unless […]
Who does not support SMTP TLS for Secure Inbound Email Delivery?
November 7, 2013
We are frequently asked who supports TLS to secure inbound email delivery. This is especially important for customers who need to be HIPAA-compliant, as email transport encryption over TLS is sufficient for HIPAA-compliant communications to end-users, so long as the TLS is configured to be sufficiently strong. While it is possible to tell who supports […]