A HIPAA compliant cloud fax service is authorized to transmit and store sensitive data including PHI and ePHI.
Didn't find an answer? You can go to our Help center or contact us by email
Absolutely. When faxing medical records or anything with PHI, the processes for keeping the information private to only the sender’s and recipient’s eyes are important. Correctly using a fax service and sending the information to the correct number are both vital to avoiding HIPAA violations when transmitting this sensitive information.
Faxing is typically more secure than email because most email providers don’t take extra security measures for the contents of their messages or attachments.Email addresses and passwords appear with high frequency on breach warning websites. The average person has a 41% chance of finding their email login information involved in a security breach. Therefore, anyone with that information can read any of their sent or received emails. Faxing over phone lines or via a secure online cloud fax system protects the information from hackers. When faxing over the phone, hackers cannot access the information sent via telephone lines.
Cover sheets are essential whether sending an online or traditional fax. These sheets serve as a means of protecting the information in the fax from someone who might accidentally see a page sitting on the fax machine. However, the cover sheet itself cannot include any PHI while also including information to indicate the confidentiality of the fax.
A HIPAA compliant fax coversheet should have the following information:
Notice of “confidential” and “important” information in the fax
Number of pages, including the cover sheet
Your name and fax number
Recipient’s name
The subject of the fax (without revealing PHI)
No. HIPAA-compliant cloud fax services should use multifactor authentication, which prevents someone who only has the user name and password from accessing the account. They also encrypt faxes from the time the fax is sent until the recipient gets it. This encryption uses specific keys to unlock the fax. Someone who does not have these keys cannot see the fax.
Yes, the mFAX service is available as both a secure web-application and as an embedded API call.
Any organization that provides healthcare-related services, be it hospitals, providers, clinics, insurers or payors, should be using a verifiable HIPAA-compliant fax service as part of its overall PHI security program.
Absolutely. We offer the following security features for HIPAA compliance:
Business Associate Agreement
Multifactor authentication login and user protections
Secure connections
File encryptions
Yes. To protect the data sent, mFax uses secure HTTPS connections for our web presence and access from fax API. Transmitted and files at rest are secured with TLS 1.2transit and AES 256-bit encryption respectively.
We can help you evaluate your fax needs so you can make the right decision for your business.
Fill out the form, start a live chat, or call us: