Regulations within the Health Insurance Portability and Accountability Act (HIPAA) were enacted in 2013 which relate to safeguarding the integrity of PHI and HIPAA compliance for text messaging. These new regulations were introduced to reduce the number of PHI breaches being reported to the US Department of Health and Human Services Office for Civil Rights, which were mostly attributed to the increased use of personal mobile devices in the workplace.
The new regulations not only increase the security and privacy levels that have to be adhered to, but widen the scope of the Act to include associates, subcontractors and third-party service providers to the healthcare industry. This article summarizes some of the new legislation, who it applies to and the policies that should be introduced in order that the text messaging of PHI is HIPAA compliant. H2: The Rules for Texting PHI in Compliance with HIPAA
The rules for texting PHI in compliance with HIPAA “require covered entities to implement policies and procedures to restrict access to, protect the integrity of, and guard against unauthorized access to PHI.” The “policies and procedures” fall into three categories – physical, technical and administrative.