" hipaa compliance Archives - Page 10 of 10 - LuxSci

Posts Tagged ‘hipaa compliance’

Google Apps HIPAA Compliance Gotchas: Email encryption not included and higher price

Wednesday, October 8th, 2014

There has been a lot of hype about Google offering a Business Associate Agreement to paid Google Apps customers who must abide by HIPAA regulations.  Those who are familiar with Google may be under the incorrect assumption that simply signing up for Google Apps will solve all their HIPAA compliance challenges.  This seems to be increasingly less likely as of October, 2014.

Myths and hidden costs pervade this equation. If a HIPAA-aspiring entity isn’t fully educated about the finer details of the compliance process, they could end up paying very large amounts of money for Google services and still be non-compliant. Here we discuss some misconceptions about Google services as they apply to HIPAA to help you avoid the pitfalls of non-compliance.

Read the rest of this post »

Tags: baa, business associate agreement, email encryption, gmail, Google apps, hipaa, hipaa compliance, ombibus
Posted in LuxSci Library: HIPAA, New Feature Announcements
No comments »

HIPAA Compliance is Needed for Emailed Appointment Reminders

Friday, September 20th, 2013

HIPAA ComplianceTwice in the past few weeks I have received appointment reminders or scheduling information from doctors via email — via insecure, non-HIPAA-compliant email.

An email message contains identifying information: my email address and my name. The appointment email messages also contain information about “the past, present, or future provisioning of health care to an individual” … me! Taken together, this means that these email messages are ePHI (more details – what is ePHI?) and needed to be secured in a HIPAA compliant manner.

That they were not compliant was obvious to me:

Read the rest of this post »

Tags: appointment, ePHI, gmail, hipaa, hipaa compliance, notice
Posted in LuxSci Library: HIPAA
No comments »

HIPAA Compliant Email – You Decide Which Messages Need Encryption

Friday, November 16th, 2012

Customer feedback is extremely important to LuxSci and we have listened once again.  Customers faced with the need for HIPAA-compliant email now have the option to decide on a per-message basis which messages need encryption (e.g. contain Protected Health Information – PHI) and which do not.  Routine non-PHI-laden correspondence no longer needs to be encrypted and users no longer have to use separate users or profiles to send regular email messages.

Read the rest of this post »

Tags: auditor, compliance, encryption, hipaa, hipaa compliance, opt out, phi, webmail
Posted in Business Solutions, LuxSci Library: HIPAA, LuxSci Library: Security and Privacy
No comments »

Jump/Thumb Drives and PHI Don’t Mix

Friday, July 20th, 2012

It is very common for the staff of small and medium sized healthcare organizations to store patient data on USB Flash Drives (a.k.a. Jump Drives or Thumb Drives).  This is universally a bad idea and guarantees non-compliance with HIPAA.  Below, I will discuss why and suggest some alternatives to accomplish the same ends.

While this article discusses USB Flash drives in particular, the same arguments hold for all portable media — full sized USB hard drives, writable CDs and DVDs, laptops, etc.

Read the rest of this post »

Tags: breach, dropbox, emr, emr/pm, ePHI, file storage, flash drive, google docs, hipaa, hipaa compliance, hipaa security rule, phi, usb drive
Posted in Business Solutions, LuxSci Library: HIPAA
No comments »

Newer Entries »