Episode 313: [HIPAA] Compliance Considerations for Your Practice Website
Group Practice Tech
English - March 31, 2023 12:00 - 34 minutes - 27.3 MBTechnology Business therapypractice Homepage Download Google Podcasts Overcast Castro Pocket Casts RSS feed
Welcome solo and group practice owners! We are Liath Dalton and Evan Dumas, your co-hosts of Group Practice Tech.
In our latest episode, we take a look at how to keep established and potential client info safe and secure on your website.
We discuss the BetterHelp debacle and lessons we can learn from it; contact forms on websites; what qualifies as PHI; where PHI gets collected through websites; how to set up a secure contact form; HIPAA friendly vs. secure email communication; requests for non secure communication; secure form options; what to include in HIPAA Notice of Privacy Practices; Good Faith Estimates; whether tracking technologies and Google Analytics are permissible; and what is and isn’t included in Google’s BAA.
Listen here: https://personcenteredtech.com/group/podcast/
For more, visit our website.
Relevant Resources & Info From Other SourcesJD Supra article on the issues with Better Help & HIPAA lessons learned -- Better Keep Health Data Private, FTC Signals to On-Line Health Care Providers
HHS Model Notice of Privacy Practices
JD Supra's excellent explanation of Psychotherapy Notes
HHS Office of Civil Rights bulletin on Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates
Google on HIPAA & Google Analytics
Easy Opt Out of Google Analytics (on Google Analytics 4)
PCT Resources
PCT's Google Workspace Configuration Learning Center
Free access! Including a free training, Making Practice Life Easier & More Efficient with Google Workspace, and checklist)
*see the tutorial in the Miscellaneous Tips section: Misc Tip: How to Create a Contact Form (and put it on your website too!)
Need to select a secure form (or secure email) service? Use PCT's free Service Selection Workbook & Worksheet for Group Practices
PCT's Sample Contact Form Conventional Non-Secure Communications Acknowledgement/Opt-In LanguagePCT's Group Practice Care Premium service with Group Practice Office Hours direct support and consultation service + support and team management systems to manage device security, remote workspace security, HIPAA and ethics trainings for group practices