AT&T Office@Hand

Learn how to use features from AT&T Office@Hand. Access our self-help options to set up and use this application to communicate with customers.

Back to product page

HIPAA Compliance – Frequently Asked Questions | AT&T Office@Hand
Article #4600


What is Health Information Privacy?

The Office for Civil Rights enforces the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information; the HIPAA Security Rule, which sets national standards for the security of electronic protected health information; and the confidentiality provisions of the Patient Safety Rule, which protect identifiable information being used to analyze patient safety events and improve patient safety.

What is HIPAA Compliance?

HIPAA sets the standard for protecting sensitive patient data. Any company that deals with protected health information (PHI) must ensure that all the required physical, network, and process security measures are in place and followed.

This includes covered entities (CE), anyone who provides treatment, payment and operations in healthcare, and business associates (BA), anyone with access to patient information and provides support in treatment, payment or operations. Subcontractors, or business associates of business associates, must also be in compliance.

The HIPAA Privacy Rule addresses the saving, accessing and sharing of medical and personal information of any individual, while the HIPAA Security Rule more specifically outlines national security standards to protect health data created, received, maintained or transmitted electronically, also known as electronic protected health information (ePHI).

A supplemental act was passed in 2009 called The Health Information Technology for Economic and Clinical Health (HITECH) Act which supports the enforcement of HIPAA requirements by raising the penalties of health organizations that violate HIPAA Privacy and Security Rules. The HITECH Act was formed in response to health technology development and increased use, storage and transmittal of electronic health information.

AT&T Office@Hand’s HIPAA-compliant solution ensures that customer calls and messages are secure with encryption in transit and at-rest, along with other features, protecting patient data and guarding against unauthorized access to protected health information.

Is the AT&T Office@Hand e-fax services HIPAA compliant?

No, the AT&T Office@Hand e-fax services is not a HIPAA compliant cloud service.

The AT&T Office@Hand is a free flowing cloud service. It means that all voice and fax services we currently offer to our customers were structured under Real-time Transport Protocol (RTP). Hence, the packets used to transport these data over the Internet is not encrypted or secured.

Key Words: HIPAA Compliance, HIPAA, health insurance portability and accountability act , e-fax service compliance, general inquiry, Frequently Asked Questions, FAQs, 4600