USEFUL LINKS
USEFUL LINKS
HOURS
Mon – Fri: 7:00 – 5:00
Sat: CLOSED
Sun: CLOSED
FOLLOW US
© SBMA 2022 – all rights reserved
site designed by digitalstoryteller.io
© SBMA 2021 – all rights reserved
site designed by digitalstoryteller.io
The healthcare industry has many acronyms to keep track of.
For example, HIPAA for the Health Insurance Portability and Accountability Act, CDC for Centers for Disease Control and Prevention, and more. When it comes to keeping your personal records as secure as you want them to be, let’s dive into PHI, what it stands for, and why it’s important for you.
PHI stands for Protected Health Information. PHI is part of HIPAA regulations that protect patients’ personal health information. Under the act, patients have the right to disclose or withhold their information as they see fit.
PHI is a national standard that any entity—businesses, converted entities, etc.—must uphold if they have private records. They must protect PHI, physical and electronic, from anyone without proper consent from obtaining it.
PHI includes an array of personal information that makes a person identifiable, including:
ePHI is any type of protected health information that is stored electronically.
PHI should stay personal and private. The patient should be the one who can disclose who they want to grant access to their personal medical records. This helps keep hackers and identity thieves away from patients’ private information.
ePHI, as mentioned earlier, is electronically protected health information. Electronic data is more easily accessed and shared, which makes ePHI more protected by federal law. ePHI must meet the HIPAA Security Rule, HIPAA Privacy Rule, and the HITECH Act.
All are set in place to protect patients’ personal information from the wrong hands.
The Health Insurance Portability and Accountability Act was created in 1996 to keep patient health information safe and secure. Under HIPAA, PHI can only be given with patient consent.
Covered entities must always follow and enforce HIPAA law. Different types of covered entities include:
Maintaining HIPAA compliance keeps personal information secure and builds trust between patients and covered entities.
The HIPAA Security Rule requires covered entities to protect against reasonably anticipated threats to the security of PHI. Covered entities must implement safeguards to ensure the confidentiality, integrity, and availability of PHI; however, HIPAA is not technology-specific and the exact safeguards implemented are left to the discretion of the covered entity.
HIPAA requires physical, technical, and administrative safeguards:
To learn more about HIPAA, and if HIPAA is zoom compliant, read our article here.
Mon – Fri: 7:00 – 5:00
Sat: CLOSED
Sun: CLOSED
© SBMA 2022 – all rights reserved
site designed by digitalstoryteller.io
© SBMA 2021 – all rights reserved
site designed by digitalstoryteller.io