Health Information Compliance Alert
Can Patients Waive Encryption For B2B Communications?
PDF
Question: I understand that a patient can request that we send to them unencrypted emails, but what about “business-to-business” (B2B) communications? Can a patient authorize our practice to email back and forth with another provider or entity without encrypting the communications?
Answer: No, the patient cannot say it’s fine for those B2B communications to happen via plain emails, states Jim Sheldon-Dean, founder and director of compliance services at Lewis Creek Systems, LLC in Charlotte, VT. “That would amount to patients giving up their rights under HIPAA to have that information protected.”
Patients are allowed to ask for plain email communications when it’s with themselves, because that’s exerting their rights for how they would like you to communicate with them, Sheldon-Dean explains. But “as far as business communications are concerned, those should be encrypted communications. You shouldn’t be using plain email for transmitting PHI between business entities.”
Health Information Compliance Alert
- Case Study:
Learn These Lessons From The Biggest HIPAA Settlement To-Date
Entities agree to pay out a benchmark-setting $4.8 million. If your company shares a data [...] - Reader Question:
What Kind Of Risk Does Using Private Email Accounts Pose?
Question: Our provider group has a secure system for encrypting all outgoing emails from our internal [...] - Reader Question:
Is This An Incidental Use And Disclosure?
Question: This summer our practice has two interns from the local community college who are helping [...] - Reader Question:
Can Patients Waive Encryption For B2B Communications?
Question: I understand that a patient can request that we send to them unencrypted emails, [...] - EHRs:
Good News: You Could Get Some Breathing Room For EHR Compliance
But don’t also expect an escape from reimbursement cuts for noncompliance. If you’re one of [...] - Quiz:
Test Your HIPAA Compliance Know-How With This Quiz
How to implement a secure wireless network in your office. How does using a cloud-based [...] - Enforcement News:
How Liability Insurers Try To Get Out Of Paying Your HIPAA Defense Costs
Plus: New regulations could be on the horizon for telemedicine. If your company undergoes a [...]