We all have at least one mobile device such as a laptop, tablet or smart phone. Not only are they packed with features, they are also portable, convenient and easy to carry.
As more and more professionals are using these devices to store and transmit Protected Health Information (PHI), there comes a need to safeguard not only the device itself but also the information stored in the device.
According to the U.S. Department of Health and Human Services (HHS), “Along with theft and loss of devices, other risks such as the inadvertent download of viruses or other malware, are top among reasons for unintentional disclosure of patient data to unauthorized users.”
HHS offers an education program with online tools to provide staff with practical tips to protect their clients’ PHI when using mobile devices.
You can find this information at How Can You Protect and Secure Health Information When Using a Mobile Device? | HealthIT.gov. It includes educational resources such as videos, easy-to-download fact sheets and posters to promote best practices for safeguarding client health information.
In addition to the online education, HHS/HealthIT.gov also recommends the following steps to protect and secure information on mobile devices:
Install and enable encryption.
Use a password or other user authentication.
Install and activate wiping, remote disabling or both to erase data on lost or stolen devices.
Disable and do not install or use file-sharing applications.
Install and enable a firewall to block unauthorized access.
Install and enable security software to protect against malicious applications, viruses, spyware and malware-based attacks.
Keep security software up to date.
Research mobile applications before downloading.
Maintain physical control of mobile devices.
Use adequate security to send or receive health information over public Wi-Fi networks.
Delete all stored health information on mobile devices before discarding the devices.
Safeguarding PHI is everyone’s business. Therefore, it is recommended that client care providers follow these guidelines to ensure patient privacy is protected.
The information contained in this article comes from the U.S. Department of Health and
Human Services (hhs.gov.) Please see the web link above for more information from HHS.