Did you know the HIPAA Security Rule provides basic standards for protecting e-PHI and organizes these standards into three main categories:
1. Administrative Safeguards – policies, procedures, training, awareness and preparedness.
2. Physical Safeguards – physical protection of e-PHI.
3. Technical Safeguards – technology-based practices for protecting e-PHI as it is stored or transmitted electronically.
Q: How much information can be released to family members over the phone? A: According to HIPAA, you may release personal information to anyone that the patient has identified as the recipient of such information. Refer all others to the contact person the patient designates. Q: My patient does not answer the phone directly. How can I leave a HIPAA compliant message with someone else or a voice mail? A: Leave the minimum amount of information needed: Your name, phone number and that you are from PRRMC. A recommended best practice would be to obtain the patients preference for follow up or appointment communication at the initial point of contact.