The Basics of Protecting PHI
The Health Insurance Portability and Accountability Act (HIPAA) placed clear responsibility on healthcare providers to protect individually identifiable health information. Hospitals and healthcare professionals who work with this type of information everyday are familiar with HIPAA requirements. However, when external business associates are engaged for activities in which protected health information (PHI) is accessible or shared, there is often a lack of explicit discussion about how to protect PHI.
