Clarify what does and does not qualify as PHI under HIPAA, so you can effectively secure and protect patient information.
Is it PHI? Get the Decision Tree
Submit this form to get your free PHI decision tree.
Myth vs. Fact: Security Risk Analysis
As a company that handles protected health information (PHI), HIPAA requires you to analyze how you manage risks to your PHI. This is known as a security risk analysis (SRA). The U.S. Department of Health and Human Services says risk analyses are vital to HIPAA...
Reactive HIPAA Compliance: What Could Go Wrong?
As a HIPAA compliance professional, it can seem like you’re running from one disaster to the next. You’re so busy putting out “fires” all day that you barely have time to work on your HIPAA compliance program before another ember ignites. It seems you only have time...
Can I Text or Email Patient Information?
Updated May 20, 2019 Sending texts and emails is a part of everyday life. Most organizations use one or both to communicate inside the organization and with clients. But when you handle electronic protected health information (ePHI), texting and emailing may be risky....
What is a HIPAA Security Risk Analysis?
A security risk analysis is a vital part of the risk management process. According to the HIPAA Security Rule, all HIPAA-covered organizations must conduct them. This analysis helps your organization prevent, detect, contain, and correct security violations. However,...Follow Us!
