Emailing patients receipt

Messages
7
Best answers
0
If we take a patients CC info over the phone and process their payment and they ask for a receipt is it a HIPAA violation to email them the receipt?
 

grabow

Networker
Messages
59
Location
Bay City, Michigan
Best answers
0
In an article I read on HIPPA compliance for emailing patients unencrypted messages, the advice given was to obtain permission (verbal is okay) from the patient to send an unencrypted email to them and to document the conversation.

When a patient asks for an email obtaining personal information, I tell them the email will come to them unsecured and ask if they are willing to take the risk that it may be viewed by persons other than themselves.

Some say okay and others decline, but at least they have a choice. The other option is to set up a secure email where the patient would have a password.
 

Cady4217

Networker
Messages
62
Location
Rutland, VT
Best answers
0
Does this apply to all information? We have patients ask us to email statements quite often, and we tell them we can't. If they know it's not secure and consent to it being sent, can we send those more "in depth PHI" info by email?
 

SharonCollachi

True Blue
Messages
1,639
Location
Clovis, CA
Best answers
3
Does this apply to all information? We have patients ask us to email statements quite often, and we tell them we can't. If they know it's not secure and consent to it being sent, can we send those more "in depth PHI" info by email?
A patient cannot violate HIPAA against themselves; they cannot violate their own privacy. If they choose to have something sent to them by a less-secure method, that is their CHOICE, and therefore there is no violation. Make sure your statements have the minimum amount of PHI necessary. No diagnoses on statements, for example.
 

Cady4217

Networker
Messages
62
Location
Rutland, VT
Best answers
0
A patient cannot violate HIPAA against themselves; they cannot violate their own privacy. If they choose to have something sent to them by a less-secure method, that is their CHOICE, and therefore there is no violation. Make sure your statements have the minimum amount of PHI necessary. No diagnoses on statements, for example.
Thank you. Our bills really don't have much info on them whatsoever, date of service, cpt code and description and any payments made.
 
Top