Traincel Logo
New HIPAA Rules... Banner

New HIPAA Rules for Text Messaging & Email

90 Minutes

Recorded Webinar


Regular (unencrypted) Email and Text Messaging containing Protected Health Information (PHI) are effective engagement and communication tools that patients like and have the right to use. However, unencrypted Emails and Text Messages containing PHI raise significant threats of medical identity theft. This webinar will explain the simple 3 Step HIPAA Safeguard that fully protects Covered Entities from HIPAA violations even when an unencrypted Email or Text Message is intercepted in transmission.

The Internet is awash with misinformation about Health Care Email and Text Messaging that can lead Covered Entities into serious trouble. Part of the problem is a common misunderstanding of how HIPAA defines PHI. It’s much more than information about an individual’s medical condition, prescribed treatment, diagnosis or medications as the webinar will explain.

The Office for Civil Rights (OCR) of the U. S. Department of Health and Human Services administers and enforces HIPAA. OCR guidance clearly explains how Covered Entities must comply with a patient’s right to communicate by unencrypted Email and Text Messaging.

The HIPAA Rules and a directive from the CMS Center for Clinical Standards and Quality/Survey & Certification Group also clarify when Covered Entities must encrypt Email and Text Messages that contain PHI.


This webinar will be going into great detail regarding your practice or business information technology and how it relates to the HIPPA Security rule and securing PHI on transmission. 

On April 1, 2021, the US Supreme Court issued a unanimous decision about the Telephone Consumer Protection Act (TCPA) that affect Health Care text messaging. The webinar will cover that decision and explain why it did not give blanket permission to text patients at all. HIPPA is still in full force and effect. 

The key takeaway is how covered entities can comply with the patients right to receive unencrypted Emails and Text Containing PHI and Protect themselves fully from HIPPA violations. Just a 3 simple step safeguard is all that is needed. 

It also will explain when Emails and Text Messages containing PHI must be encrypted.

You will find out how to use and document the 3 Step Safeguard to protect your organization when communicating with patients by regular Email and Text Message. The 3 Step Safeguard is a complete “Safe Harbor” from HIPAA violations and exposure to unquestionable, serious Risks if you don’t take advantage of this safeguard. 


  • Brief review of HIPAA and the unanimous Supreme Court TCPA decision
  • How HIPAA defines PHI - it's not just medical information about, for example, a diagnosis, surgical procedure or prescription
  • A Patient’s absolute right to receive PHI by standard (unencrypted) Email & Text Message
  • The simple 3 Step HIPAA Safeguard that protects Covered Entities from HIPAA violations when complying with patient right to communicate by standard, unencrypted Email and Text Message
  • When Covered Entities must encrypt Emails and Text Messages
All Access Pass Banner

All Access Pass Benefits

$999 per year

  • Access to 12 Live Webinars per year
  • Access to 12 On-Demand Webinars per year
  • All Live and On-Demand webinars include certificates, printable presentation material and handouts
Learn More


Paul R. Hales's Avatar

Paul R. Hales

HIPAA Expert

Paul R. Hales, J.D. is widely recognized for his expert knowledge and ability to explain the HIPAA Rules clearly in plain language. Paul is an attorney licensed to practice before the Supreme Court of the United States and a graduate of Columbia University Law School with an international practice in HIPAA privacy and security. He is the author of all content in The HIPAA E-Tool®, an Internet-based, complete HIPAA compliance solution with separate editions for Covered Entities, Business Associates, Health Plans and Third Party Administrators.