Faxing may not be as popular, but there are still times when it makes the most sense. Healthcare providers and the vendors who serve them must be sure that any service they use to transmit patient data meets the standards of HIPAA. What should you look for in a HIPAA compliant fax service?
HIPAA Compliant Fax Services – The Basics
How an organization manages patients’ protected health information (PHI), both in physical and electronic (ePHI) formats, is the core of HIPAA compliance.
HIPAA rules and regulations require the same standards of privacy and security for PHI in any form: whether files are in paper or electronic format and whether they are stored in filing cabinets, hard drives, server farms, or mobile computing devices.
The method of protecting this information varies widely based on its format. But HIPAA compliance is a pass/fail exercise. There is no such thing as partial credit. Each year, covered entities and business associates must conduct a security risk assessment of 5-6 audits to identify potential gaps in HIPAA compliance.
Part of that risk assessment is an audit of all devices used to store and process ePHI. The HIPAA Security Rule also requires minimum data security standards.
The HIPAA Privacy Rule establishes standards regarding access to ePHI by staff and accidental exposure. All guidelines and standards of HIPAA must be met to achieve compliance.