AMA Offers FAQ Encrypting Patient Health Information

Learn more about encrypting patient’s personal health information (PHI) with this FAQ from the American Medical Association.

The FAQ explains the importance of encrypting personal health information, discusses what information practices should encrypt, and provides points to consider when selecting an encryption method.

Changes to the HIPAA Security Rule under the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 require practices to notify patients when unencrypted PHI is breached. The extensive notification requirements do not apply to breaches of encrypted PHI.

Add Your Comments

The Pennsylvania Medical Society encourages lively debate, but please behave courteously and responsibly. Comments that include profanity, personal attacks (including language that could potentially identify an individual), or any other inappropriate, offensive, or illegal material will be removed. For more information, please see our Terms of Use. We do not answer legal questions on line. Members seeking general information about laws and regulations affecting medical practice may call our member resource line, (800) 228-7823.

Display name as (optional):

Comments (max 2000 characters):

Comments: 0

Last Updated: 4/1/2010

Share This Page Print page

From:
Email:
To:
Email:
Subject:
Message: