One platform with business phone, video conferencing, chat, contact center and APIs for secure, reliable communications that keep your business ready, responsive and resilient.
CenturyLink’s platform and patented technology deliver of a consistent end user experience over inconsistent networks, supported by an end-to-end SLA that covers both uptime and call quality.
The HIPAA (Health Insurance Portability and Accountability Act of 1996) mandates data privacy and security provisions for safeguarding patients’ medical information. It protects all health-related information that is held or transmitted by a covered entity or a business associate. Notably, this information can be held not just on paper, as Personal Health Information (PHI), but also as Electronic protected health information (ePHI) — information that is produced, saved, transferred or received in an electronic form.
You might think that HIPAA is merely a set of patient privacy regulations, that doesn’t affect many companies. This couldn’t be further from the truth. The definition and scope of HIPAA compliance has been broadened — a lot.
Examples of companies that must comply with HIPAA include health insurance providers, personnel departments of companies with health coverage, and healthcare-related businesses. In addition, any of the subcontractors or partners of businesses that significantly touch protected health information are also regulated under HIPAA, expanding the number of covered businesses to hundreds of thousands, if not millions!
Make no mistake: Under the Health Information Technology for Economic and Clinical Health (HITECH Act) enacted in 2009, if you’re a company handling protected health information and therefore subject to HIPAA, your business associates are directly responsible for compliance too. That’s why VoIP providers need to be the documented business associates of any HIPAA covered entity, such as a hospital, dentist office, elder care facility, insurance company or doctor’s office.
It’s a dangerous oversimplification to assume that “telecommunications are not subject to HIPAA.” HIPAA isn’t just a compliance directive or a best practice; it’s a law, with real teeth and serious consequences for violations.