Originally Posted by
crystalpm
I recently have been asked on several occasions the proper format for sending patient information - either to another office or to a company like Crystal Practice Management. To follow the HIPAA rules you need to send your data encrypted. A common email does not quite cut it. You have a couple different options - the most common are:
1) Get a digital signature and send the email with a password
2) Compress/Encrypt the email with a 3rd party product and email
3) Use a secure FTP site to send the data and have the other party download from there
4) Setup a secure connection between the 2 parties - Remote Desktop
There are several ways to go about using the internet to send the information. Also make sure that you have a signed agreeement acknowledging the access to patient information. We at Crystal have signed business associate agreement with every office that does a data transfer.
Just remember you can never be to safe with your patient information.
Bookmarks