Using new technologies such as mobile devices, texting, and social media Apps have some inherent privacy and security risks that may put providers out of compliance. In order to integrate the use of mobile technology, texting, and social networking into provider and client communications, it is essential to perform the proper steps in an information security compliance process to evaluate and address the risks of using the technology. The process must include consideration of various individual access rights in the HIPAA Privacy Rule, as well as protection of any client information.
Using new technologies has become a part of society today, and addressing mobile devices, texting, and social media in policy and training is essential to avoiding the pitfalls of regulatory violations and the resulting penalties. We will provide an overview of the use of new technologies under HIPAA as well as the requirements under the rules to assess the risks involved and properly manage the use of mobile devices, texting, and social media. Examples of appropriate use and inappropriate use and an exploration of some of the most frequently encountered privacy and security risk issues will be provided.
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC. He is a frequent speaker regarding HIPAA, including speaking engagements at numerous national healthcare association conferences and conventions, and the annual NIST/OCR HIPAA Security Conference. Jim has more than 16 years of experience specializing in HIPAA compliance, more than 34 years of experience in policy analysis and implementation, business process analysis, information systems and software development, and eight years of experience as a Vermont certified volunteer emergency medical technician. Jim has no real or perceived conflicts of interest that relate to this presentation.