HIPAA-regulated entities do not allow vendors of technology to monitor protected health information to use online monitoring technology that would result in unauthorized disclosure or violation of HIPAA rules. Reminded enterprises and business partners covered by a newsletter yesterday.
“Providers, health plans, and HIPAA-regulated entities, including technology platforms, must comply with the law” said OCR Director Melanie Fontes Rainer. “This means considering the risks to patient health information when using tracking technologies. Our newsletter answers questions about how to protect the privacy and security of health information for people who use tracking technologies.”