Ordinary email travels in the open and is easy to misdirect — and misdirected email is one of the most common causes of healthcare
breaches. The good news: when PHI is properly encrypted, it generally falls under HIPAA’s breach “safe harbor,” so a lost or intercepted
message is far less likely to become a reportable breach. The practices below get you there.