Email is a useful and simple way of communication. Is it okay for healthcare providers to use email to send electronic protected health information (ePHI) to patients? Is it a violation of the HIPAA Rules?

The HIPAA does not have any rule stating that PHI cannot be digitally transmitted. HIPAA-covered entities can employ email or any digital communication to deliver ePHI as long as proper safety measures are employed to make sure the integrity, confidentiality and availability of PHI.

The following are essential points to remember when utilizing email to transmit ePHI: