Our agency only sells long-term care policies. Does the information in an application need to be encrypted?+
Yes, you must protect the information on an application by encrypting the transmission for current clients if they have a change in their policy and new clients. This is regulated under Gramm-Leach-Bliley and applies to all insurance agencies that sell financial products.
If I am sending a scanned copy of a master app. to an insurance company, is it required I encrypt the file?+
Yes, anytime you transmit Protected Health Information (PHI) or Non Public Personal Information (NPPI) you must encrypt it. Your best policy is to encrypt it if there is any question.
Is Gmail an acceptable email encryption solution?+
No, Gmail encrypts email over their network, only protecting data that is on their servers. Email in transit on other servers on the Internet are vulnerable unless you adopt a solution that provides client-side encryption.
Sign up for Our Blog
June 25, 2019
Andrew Kroninger, Total HIPAA’s Director of Customer Success, recently interviewed Erik Kangas, founder and CEO of LuxSci. LuxSci provides email encryption, web hosting, forms, and secure sending services for HIPAA… Read More ›Read More
June 12, 2019
This week, the Vermont Supreme Court issued a landmark ruling, regarding HIPAA lawsuits, that could potentially change the way individuals hold their healthcare providers accountable for breaches of PHI (Protected… Read More ›Read More