HealthIT Security (10/19, McKeon) reports, “The HHS Office for Civil Rights (OCR) unveiled two resource documents to help [clinicians] communicate telehealth privacy and security risks to patients.” The documents “each aim to convey risks to patients in plain language and help them reduce risk using fundamental cyber hygiene practices.” They “stress the importance of supporting the continued use of telehealth while still communicating risks effectively. The HIPAA Privacy, Security, and Breach Notification Rules do not require” clinicians “to inform or educate patients about these risks, but the documents give [clinicians] the ability to do so if they wish.”
Related Links:
— “OCR Publishes Resources On Telehealth Privacy, Security Risks,” Jill McKeon, HealthIT Security, October 19, 2023