Have you ever or do you routinely email Protected Health Information (PHI) to your personal email account so you can catch up on work outside of the facility? With the many demands of the job to get the work done, it can be tempting. This commonly results in a HIPAA violation as the information is not properly protected and more easily breached! Although your intentions may be good, this is not an appropriate practice. Your company may have a policy directly relating to PHI. Reliant employees should refer to Policy 8.3 – Use of E-Mail and Text Messaging for full policy information.
The same caution applies to taking paper patient information outside of the facility. Removing protected health information from a healthcare facility places that information at risk of exposure. Without appropriate measures in place to safeguard this information in transport and outside of the facility, it is in violation of HIPAA Rules. Reliant employees should refer to Policy 3.14 – IT Equipment Protection & Physical Access Controls for full policy information.