HIPAA Compliant Messaging and More
Bridge is an all-in-one patient engagement solution that is highly customizable, meeting some of the most complex needs of high volume, multi-specialty clinics. Supporting advanced, HIPAA compliant interfaces to many of the top software solutions, including Electronic Health Record (EHR), Revenue Cycle Management (RCM), Practice Management (PM), and Radiology Information Systems (RIS). Bridge provides HIPAA compliant messaging, scheduling, and bill pay in their all-encompassing patient portal.
HIPAA Compliant Messaging
Bridge’s solution allows physicians and staff to securely message patients to their inbox in the portal, and receive a HIPAA compliant notification via email, SMS or phone push notification. As a 2015 ONC certified patient portal, Bridge offers completely secure HIPAA compliant messaging.
HIPAA Compliant Scheduling
Bridge’s solution is a rules-based, HIPAA compliant scheduling solution that ensures a patient can work their way through the proper clinical screening and select from conflict-free times. Access to the scheduler is available both via the secure patient portal or Bridge’ mobile app – available in both iOS and Android. The solution was built to easily handle complex scheduling decision trees that are adaptable to any provider group and the unique schedules of their providers.
HIPAA Compliant Bill Pay
Bridge offers patients the ability to securely pay their bills online with their HIPAA compliant bill pay solution. Supporting bi-directional interfaces into RCM and PM software solutions, Bridge can both receive invoices for patients while posting completed payments back. Bridge also adheres to PCI compliance regulations.
HIPAA Compliant Patient Portal
Bridge is an all-in-one, HIPAA patient portal that works bi-directionally with any interfaceable EHR, RCM, PM, HIE, and RIS system. Offering much more than just patient check-in software, Bridge has a wealth of patient engagement features, including:
- Personal health records (labs, medications, conditions, etc.)
- Patient/provider/staff messaging
- Online bill pay
- Custom, integrated patient forms
- Patient intake
- Prescription refill requests
- Patient self-registration
- Two-factor authentication
- SMS-based username/password resets
- Email, SMS and mobile push notifications/reminders
Mobile App for HIPAA Compliant Messaging
Bridge’s all-in-one solution is available as a client-branded, HIPAA compliant mobile app, enabling patients to access many of Bridge’s most common features on their mobile phones. With support for both iOS and Android, the app includes the majority of the functionality found in Bridge’s web version. Furthermore, clinics/hospitals/IDNs can select from a library of pre-built existing features, while also developing new custom features.
Is Zoom HIPAA compliant?
Zoom is willing to sign a HIPAA Business Associate Agreement (BAA), which is an important element for HIPAA compliance, but it lacks end-to-end encryption which is the most important step towards achieving HIPAA compliance. At the time of writing, there are multiple security issues preventing HIPAA-compliance.
Is Facebook Messenger HIPAA Compliant?
Facebook Messenger™ fails to meet all four HIPAA requirements and is not considered a HIPAA compliant telemedicine platform.
Further recommended reading:
Is Apple FaceTime HIPAA Compliant?
Apple® is not willing to sign a BAA; therefore, its services, including FaceTime®, are not technically HIPAA compliant.
Further recommended reading: Is Apple FaceTime® a HIPAA Compliant Telehealth Software Platform.
Is WhatsApp HIPAA compliant?
WhatsApp® is NOT a HIPAA compliant telemedicine software and should not be used to share ePHI or deliver online healthcare since doing so would violate HIPAA regulations.
Further recommended reading: Is WhatsApp® a HIPAA compliant telemedicine software?
Can a patient use the direct messaging protocol?
Yes, as well as bidirectional patient messaging granted, the provider has a direct message address.
Is Bridge a HIPAA compliant patient portal?
Yes. Bridge has gone through multiple rounds of third-party HIPAA audits and is ONC 2015 Edition certified. With the ONC 2015 certification, Bridge’s portal meets or exceeds all security requirements pertaining to patient portal software, as outlined in the standards for MACRA/MIPS and HIPAA. Protecting the privacy of patients’ personal health information is a top priority for Bridge. Bridge clients also sign a business associate agreement with Bridge for HIPAA compliance purposes. HIPAA compliant features include:
- HIPAA compliant bill pay
- HIPAA compliant appointment scheduling
- HIPAA compliant messaging
- HIPAA compliant appointment reminders
To learn more about security, please see: 8 Security Features You Need in an EHR or Patient Portal.
How does Bridge ensure HIPAA compliance in each portal?
Bridge is a patient engagement solutions provider that is committed to the security, compliance, and QA of each individual portal installation. Each portal is hosted on a secure Google cloud server with the appropriate firewalls. Bridge undergoes annual third-party HIPAA audits and various other security-related audits, Bridge also staffs a full-time compliance officer.
Offer patients a HIPAA compliant patient portal with Bridge.
What are HIPAA-compliant advanced IT solutions?
Healthcare providers in the US must comply with HIPAA regulations, which were designed to provide privacy standards to protect patients’ medical records and other health information supplied to health plans, doctors, hospitals, and other healthcare entities. These regulations extend to all types of healthcare technologies that doctors might use to store and manage patient information. Although there is no definitive HIPAA certification for any organization, IT companies can be HIPAA-compliant. This means that they adhere to HIPAA regulations and take the necessary steps to ensure their products effectively protect sensitive patient information.
Bridge has a long history in helping healthcare organizations meet and understand HIPAA guidelines as they are developers of a HIPAA compliant patient portal.
To learn more about HIPAA and healthcare applications, please see:
HIPAA and Healthcare Applications, Part 1 of 3: What You Need to Know About User Authentication
HIPAA and Healthcare Applications, Part 2 of 3: What You Need to Know About Auditing
HIPAA and Healthcare Applications, Part 3 of 3: What You Need to Know About Data Transfer
Is it a HIPAA violation to include names or PHI in an email or SMS text?
The short answer is yes. That being said, depending on the content of the email/SMS, who the email/SMS is being sent to, or mechanisms put in place to ensure the integrity of Protected Health Information (PHI), email/SMS can HIPAA compliant messaging in certain circumstances. The patient also can sign an opt-in agreement (where they accept the risks of PHI in messages) with a health organization and receive PHI via email/SMS. The opt-in agreement is a common practice among Bridge clients.
For more information, please see: The Facts about HIPAA and Email/SMS Communication with Patients
Is Skype® HIPAA compliant?
Skype® is currently not HIPAA compliant. While Skype’s ® encryption methods are secure, one of the most compelling reasons against the use of Skype® for healthcare provider-patient communication is that Skype® will not enter into a Business Associate Agreement (BAA), which is required under the HIPAA Omnibus Rule. Organizations that use the software to communicate with patients over the Internet should be aware of the risks involved and consider using other video conferencing platforms instead.