Is Your Marketing Company HIPAA Certified?

Health Insurance Portability and Accountability Act (HIPAA)

The Health Information Portability and Accountability Act (HIPAA) protects information about your practice, patients, personal health and health care services. Don’t put your practice in jeopardy by handing sensitive patient information over to a marketing company that isn’t HIPAA certified (and might unknowingly disclose private patient information). Ex. Uploading patient before and after photos with the patient name attached.

This Act prevents unauthorized access to Protected Health Information (PHI) through appropriate administrative, technical and physical safeguards.

The following patient information is protected:

  • Names
  • Addresses
  • Patient health records
  • Payment records

Given the increased adoption of electronic medical records, as well as, cloud-based software as service (SAAS), advanced digital security is more important than ever. HIPAA rules apply to covered healthcare providers and all of their business associates. Security measures includes the following:

  • Benchmark-based password creation and use
  • Personnel education and training
  • Limited access to PHi
  • Data Encryption
  • Use of firewalls
  • Antivirus software
  • Digital signatures

HIPAA offers patients better access to their medical record and more control over how their personal health information is used and disclosed.

Note: Pryde Marketing is a HIPAA Certified Business Associate.