Because HIPAA compliance is about much more than electronic records. Paper records, oral and text communications, the use of social media and patient engagement are all part of HIPAA compliance.
Full compliance requires identifying risks to Protected Health Information (PHI) every year – Risk Analysis; and managing the risks – Risk Management. Ongoing Workforce Training is also required to help the workforce understand how to maintain privacy and security of patient information.
