nyankeesfl wrote on Monday, March 10, 2014:
Hello,sorry this is not a question about OpenEMR but I figured since the forum is active, it wouldn’t hurt asking.
I’m trying to find a HIPAA compliant email.I understand that both Office365 and Google Apps(as of last year) are willing to sign BAAs.I’m trying to migrate away from an Exchange Server and into web-based email.I understand that both have tools to migrate the emails data.
I’m used to gmail as my personal email and I like it but I was wondering if you guys could give me some feedback on what you guys use and how you use it(I read that in Google Apps you have to disable certain features such as Google+,etc) and which one would be the better option to use in a small practice in case of an audit.We don’t plan to send over any type of PHI through email at the moment and maybe just store office forms as well as the paperwork we have employees sign and also things like disaster plan,etc in Drive(Google Docs).
Also,I’m finding a lot of contradicting information on the web,as it is expected,regarding the steps that a Security/Privacy officer should take to secure the practice(encrypt hard drives,etc) .If anyone could please send me over to a reputable website regarding HIPAA security/privacy that might contain good document templates and such,that would be highly appreciated.
Thanks!