Healthcare provider organizations are responsible for the privacy and security of their patients’ information. HIPAA codified this requirement for covered entities, including specific guidelines for protecting sensitive patient information such as behavioral and substance abuse records.
Health Information (HI) professionals are well aware of HIPAA’s patient privacy rules, regulations, and best practices for compliance. However, they must also consider sensitive patient data that flows outside of HIPAA: information shared by patients with outside third parties such as mobile applications and social media platforms.
