• Revenue Cycle Management
  • COVID-19
  • Reimbursement
  • Diabetes Awareness Month
  • Risk Management
  • Patient Retention
  • Staffing
  • Medical Economics® 100th Anniversary
  • Coding and documentation
  • Business of Endocrinology
  • Telehealth
  • Physicians Financial News
  • Cybersecurity
  • Cardiovascular Clinical Consult
  • Locum Tenens, brought to you by LocumLife®
  • Weight Management
  • Business of Women's Health
  • Practice Efficiency
  • Finance and Wealth
  • EHRs
  • Remote Patient Monitoring
  • Sponsored Webinars
  • Medical Technology
  • Billing and collections
  • Acute Pain Management
  • Exclusive Content
  • Value-based Care
  • Business of Pediatrics
  • Concierge Medicine 2.0 by Castle Connolly Private Health Partners
  • Practice Growth
  • Concierge Medicine
  • Business of Cardiology
  • Implementing the Topcon Ocular Telehealth Platform
  • Malpractice
  • Influenza
  • Sexual Health
  • Chronic Conditions
  • Technology
  • Legal and Policy
  • Money
  • Opinion
  • Vaccines
  • Practice Management
  • Patient Relations
  • Careers

Protect patient data on personal electronic devices


Mobile electronic devices offer a lot of benefits to your practice, but the devices pose data privacy issues. Discover what you need to keep patient information protected.

Q: I recently bought an iPad for use in my practice, and several of my staff members now have smartphones. How can we be sure we’re keeping  patient data private on these devices? 

A: Smartphones and tablets do pose a risk to patient information privacy. The most common problems using these devices are simply misplacing them or theft. If that happens, the device owner should have a way of remotely “wiping” any critical information on the device. In addition, the device always should require a complex password so that if it is stolen accessing it will be difficult.

Any product that communicates via Wi-Fi or broadband should include encryption for communications that include protected health information. If you lose a device that contains protected health information and it cannot be wiped immediately, it most likely would be considered a data breach. In such cases, you must notify the U.S. Department of Health and Human Services and follow its breach notification protocol. Details are available at www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/index.html.

The author is principal consultant and chief executive officer of Sorensen Informatics in Lombard, Illinois. Please send your technology-related questions to medec@advanstar.com. Also engage at www.twitter.com/MedEconomics and www.facebook.com/MedicalEconomics.


Related Videos
© drsampsondavis.com
© drsampsondavis.com
© drsampsondavis.com
© drsampsondavis.com
Mike Bannon ©CSG Partners