1 min read

“When in doubt, it’s probably PHI.”

Picture of Dean Levitt Dean Levitt October 1, 2024

HIPAA compliance
Quote graphic: "When in doubt, it's probably PHI" attributed to Stephen Kaplan, Chief Privacy Officer at Health Plan One

Lawyer Stephen Kaplan has served companies in a regulatory compliance and privacy role since 2002, including acting as the Privacy Officer for multiple organizations. In his role as CLO, CCO, and CPO for Health Plan One, L.L.C., and as a consultant, he advises on and assists with the development and implementation of the entity's data privacy policies and practices, working across business groups to drive data privacy excellence.

Kaplan says, "When in doubt, it's probably PHI." 

When clients ask whether something is PHI or not, he tells them to treat everything like PHI. "Get everything encrypted. Get all your modalities of communication secured and encrypted through something like Paubox. We really need to assume that what we're going to send needs consent, that what we're going to send is PHI and should be protected."

 

Secure transmission and secure storage

Healthcare email marketing requires secure transmission as well as storage.

Paubox is one of the only truly HIPAA compliant email marketing tools. Paubox secures PHI in transmission, and you can safely send PHI. Personalization is the key to effective patient communication and successful marketing. 
Secure every email you send and receive HIPAA compliant. Threat-proof. Hassle-free.
digital security icon over medical provider with stethoscope

Does the Safe Harbor method impact how healthcare professionals communicate?

Picture of Kirsten Peremore Kirsten Peremore : May 30, 2025

In digital communication, especially via HIPAA compliant email, the Safe Harbor method impacts the content and security measures required. When PHI...

HIPAA compliant email HIPAA compliance
Read More
Hand holding a smartphone

Discussing health issues with patients via text message

Picture of Tshedimoso Makhene Tshedimoso Makhene : October 3, 2024

While HIPAA does not explicitly prohibit texting for patient-provider communication, healthcare providers must ensure that any communication through...

HIPAA compliance Patient privacy
Read More
Hands holding together in care and support

Differences between a covered entity and an informal caregiver

Picture of Tshedimoso Makhene Tshedimoso Makhene : August 28, 2024

A covered entity includes healthcare providers, health plans, and healthcare clearinghouses, all required to comply with HIPAA. Informal caregivers,...

HIPAA compliance
Read More

Subscribe to Paubox Weekly

Every Friday we bring you the most important news from Paubox. Our aim is to make you smarter, faster.