Online Safety Community

Ensuring patient engagement that is HIPAA compliant

The major reason for which there are widespread violations of the HIPAA Rules for communicating with patients by unencrypted email and text message is that healthcare providers and Covered Entities and their Business Associates are ignorant of the rules. Although the HIPAA Rules are pretty straightforward and easy to follow; providers and Business Associates who don’t implement them in accordance with what is required under the law are at great risk and directly liable for breaking them.

Not many are aware that simple items such as an appointment reminder, Happy Birthday wishes, reminders that a patient is overdue for a checkup or has an outstanding balance on a bill, qualify for a PHI by definition, even though no diagnostics-specific information could be contained in them. These are the finer elements of HIPAA rules that Covered Entities and their Business Associates need to be thoroughly aware of.

Knowing how they can maximize the use of key patient communication tools while protecting themselves and their organization from government penalties and patient lawsuits is of crucial importance. It is important for healthcare providers and Business Associates not to land in serious trouble simply because they didn’t follow the HIPAA Rules for unencrypted electronic communication with patients.

The HIPAA Safe Harbor

Healthcare providers have a mandatory “duty to warn” patients about risks associated with unencrypted email. Even after receiving the warning, if a patient refuses to receive unencrypted emails; healthcare providers and Business Associates must strictly follow the patient's restriction.

HIPAA also offers what it calls the HIPAA “safe harbor”, which frees the provider and the Business Associate from being responsible for unauthorized access of a patient's PHI during transmission and for safeguarding PHI delivered to the patient.

Full understanding of how to be HIPAA compliant with patient engagement

A webinar that is being organized by MentorHealth, a leading provider of professional trainings for all the area of healthcare, will offer learning on HIPAA Rules for transmitting informational email and text messages to patients over an electronic communications network.

Paul R. Hales, an expert on HIPAA Privacy, Security, Breach notification and Enforcement Rules with a national HIPAA consulting practice based in St. Louis, and the author of all content in The HIPAA E-Tool, an Internet-based, Software as a Service product for healthcare providers and Business Associates; will be the speaker at this webinar. please register for this webinar. This course is approved for 1 general credit from the Nevada Board of Continuing Legal Education.

At this webinar, Paul will offer detailed explanation of all the areas concerning HIPAA compliant patient engagement. He will explain this topic in the following parts:

  • The information that makes a message subject to HIPAA
  • The “safe harbor” - How healthcare providers may obtain consent from patients to send PHI in unencrypted email and unencrypted text messages and not be responsible for unauthorized access to the PHI in transmission or when received by the patient
  • What a healthcare provider must do if a patient does not agree to receive PHI in unencrypted email or unencrypted text message
  • The requirements for a Business Associate to be able to communicate by email or text message with a patient on behalf of a healthcare provider
  • How a Business Associate may protect itself from liability for violating HIPAA Rules about email and text messages in its Business Associate Agreement
  • What a healthcare provider must do if a patient does not agree to receive PHI in unencrypted emails or text messages
  • How healthcare providers and Business Associates may prove they are compliant with the HIPAA Rules through documentation
  • The Policies and Procedures healthcare providers and Business Associates must have in place to comply with HIPAA Rules concerning communication with patients through email and text message

The following areas will be covered at this webinar:

  • More and more patients like the convenience of email and text message
  • The HIPAA “safe harbor” - how you can communicate with patients in the way they prefer and protect your organization
  • How healthcare providers and Business Associates can work together to avoid violating HIPAA Rules about email and text message communications with patients

This course is of immense value to healthcare providers, dentists, optometrists, physicians, podiatrists, chiropractors, hospitals, Business Associates, those in billing, collection, insurance brokerage, patient engagement and marketing companies.

Fill this form to get more updates about HIPAA

Views: 8

Comment

You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

Adam Fleaming posted a blog post

When SSARS does and does not Apply to Preparation Engagements

The Statement on Standards for Accounting and Review Services (SSARS) is a section of the professional standards set out by The American Institute of CPA’s (AICPA), seeking to review earlier standards for reviewing and compiling financial statements and setting out the terms of engagement between the CPA’s and the parties. This section has…See More
1 hour ago
John Robinson shared their discussion on Twitter
1 hour ago
John Robinson posted a discussion

Risk Management Solutions

Risk is defined as the potential hazard, harm or side effect of an activity. Almost all activities come with some or another form of risk, which needs to be mitigated or eliminated. Risk management is a major issue for regulatory compliance professionals. Our resources directory is a medium that helps them understand and overcome challenges. A few ISO standards, such as ISO 9004 cover risk management.Risk Management is a key component of ISO 9004:2000There is an intricate link between ISO…See More
1 hour ago
John Robinson posted blog posts
2 hours ago

Forum

Risk Management Solutions

Risk is defined as the potential hazard, harm or side effect of an activity. Almost all activities come with some or another form of risk, which needs to be mitigated or eliminated. Risk management…Continue

Tags: risk, Banking, management, healthcare, Process

Started by John Robinson 1 hour ago.

Occupational Health and Safety 4 Replies

Health and safety are important aspects of an organisation’s smooth and effective functioning.  Did you know that workplace health & safety injuries cost Australian businesses over $60 billion…Continue

Tags: Safety, and, Health, Occupational

Started by WHS Solutions. Last reply by John Robinson 22 hours ago.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Badge

Loading…

© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service