HIPAA compliant Fax For The Record
It is common for our OCR applications to be integrated with eFax; and since we have a vertical solution for Health-care companies that process paper EOB's, I track HIPAA compliance as it relates to Internet Fax. I've also had experience with this subject as MCI's Product Manager for their network fax service. I recently ran across an article from a fax service provider that implied that fax-to-email and email-to-fax is HIPAA complaint. This is not correct as the PHI is traveling over the internet. For Internet Fax with PHI to be HIPAA compliant, it must travel over a VPN if connecting applications, or the PHI must be encrypted, like a password protected PDF, if sending via fax-to-mail because the image is traveling over the internet.