Health Information Compliance Alert
Just The Fax, Please
PDF
Question: Our office recently switched to receiving faxes electronically. What is the best way to secure the e-PHI being sent and received? Answer: Once a fax becomes electronic, it is considered e-PHI, reminds Frank Bresz, senior manager of Security & Technology Solutions at Ernst & Young in Pittsburgh, PA. Therefore, you must develop "proper access controls so that only authorized users can see that document," he says. Best practice: "Store faxes on a central server where users have the ability to know who the fax was destined for," Bresz suggests. Remember: You must protect outbound faxes, too. Tip: Establish a validation procedure so that if a patient asks you to fax her something, you can determine that it is an authentic request, Bresz recommends. The Bottom Line: "What you don't want is someone to just call up and obtain confidential information," Bresz says. Make sure that you have procedures in place to ensure that you send faxes to the right place. And when an e-fax is received, be sure it has the same protections as the rest of your e-PHI, he asserts
Health Information Compliance Alert
- Security:
Use 5 Tips To Ensure Your HIMS System Makes The Security Rule Grade
Your management system is crucial for security rule compliance. Can your health information management system [...] - Security Compliance:
Is Your Complaint Process Making You An Enforcement Target?
5 tips to keep the bull's-eye off your back. The bad news: You're going to [...] - Security:
Don't Let Disaster Recovery Wipe You Out
Expert guidance for a quick, cost-effective recovery plan. You've written HIPAA privacy and security rule [...] - Security Strategies:
4 Tips To Buttress Your Backup Process
Strengthen your plan before you get backed into a regulatory corner. Worried that your backup [...] - Security Compliance:
Evade The Encrypted PHI Trap
Naiveté won’t negate a security rule violation! You’ve encrypted your patients’ PHI. So, now what? [...] - Industry News:
Can Doctor's Notes Open a Pandora's Box? The Slippery Side of HIPAA
Giving patients free access to medical records is fraught with concerns, say doctors. Should medical [...] - Reader Questions:
Reporting For Duty
Question: Our physician reported to a government agency that her patient's use of pain medication [...] - Reader Questions:
A News-Worthy Notice
Question: We have revised our notice of privacy practices (NPP). Do our patients need to [...] - Reader Questions:
Just The Fax, Please
Question: Our office recently switched to receiving faxes electronically. What is the best way to [...]