Question: Our clinicians are using more and more apps for a variety of reasons, including clinical decision-making and prescriptions. It makes our compliance manager uncomfortable. How can we know which apps must comply with HIPAA and which don’t need to?
New Jersey Subscriber
Answer: Whether a software application must comply with HIPAA or other federal privacy laws depends on a myriad of factors. Thankfully, you now have a user-friendly tool to help you find the answer.
The Federal Trade Commission (FTC) recently designed a new “litmus test” to pinpoint which apps must comply with HIPAA guidelines simply by answering the following 10 questions (see www.ftc.gov/tips-advice/business-center/guidance/mobile-health-apps-interactive-tool):
Apps can help improve quality of care, communication with patients, education, and tracking or monitoring illnesses. But don’t forget that any information you – or your providers – are importing, accessing, and storing is sensitive information. Always take safeguards to keep it from falling into the wrong hands or being used in the wrong way.