Our agency only sells long-term care policies. Does the information in an application need to be encrypted?+
Yes, you must protect the information on an application by encrypting the transmission for current clients if they have a change in their policy and new clients. This is regulated under Gramm-Leach-Bliley and applies to all insurance agencies that sell financial products.
If I am sending a scanned copy of a master app. to an insurance company, is it required I encrypt the file?+
Yes, anytime you transmit Protected Health Information (PHI) or Non Public Personal Information (NPPI) you must encrypt it. Your best policy is to encrypt it if there is any question.
Is Gmail an acceptable email encryption solution?+
No, Gmail encrypts email over their network, only protecting data that is on their servers. Email in transit on other servers on the Internet are vulnerable unless you adopt a solution that provides client-side encryption.
November 23, 2020
Happy Thanksgiving from all of us at Total HIPAA! This year, we invite you to celebrate Thanksgiving by sharing. Please consider donating to your local food bank to help families… Read More ›Read More
November 9, 2020
Thank you to everyone who submitted questions and attended our 31 Days of Cybersecurity webinar. In this blog post you can find all the questions we asked our expert panel… Read More ›Read More