Electronic health records store both personally identifiable information (PII) and protected health information (PHI), but they are just one component to maintain HIPAA compliance. For example, the workstations provided by your IT department are a component to HIPAA compliance, as are policies around access to those devices. These are just two examples to items that are related to HIPAA compliance outside the core EHR, but there are several others.

Download our COVID-19 HIPAA and Working Virtually FAQ below for answers to some frequently asked questions and other topics to consider regarding remote workers and HIPAA compliance.