Study: Majority of Healthcare Orgs Risk HIPAA Non-Compliance with Consumer Messaging Apps | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Study: Majority of Healthcare Orgs Risk HIPAA Non-Compliance with Consumer Messaging Apps

November 10, 2015
by Rajiv Leventhal
| Reprints
Just 8 percent of healthcare institutions prohibit consumer messaging apps for employee communication, according to a recent study from Chicago-based Infinite Convergence Solutions, Inc. 
 
What's more, only one in four healthcare institutions who have an official mobile messaging platform are using an internal, company-authorized app. The rest are recommending or using consumer-facing messaging apps and services that do not provide the enterprise-grade security needed to comply with regulations, such as the Health Insurance Portability and Accountability Act (HIPAA), the research found. 
 
The study, which surveyed 500 professionals across multiple sectors, also found that employees in the healthcare industry use mobile messaging more frequently than voice calling for their business communication, where they most frequently communicate with colleagues. The immediacy of the information employees need to communicate matters most when they are deciding whether to use phone, email or mobile messaging to reach someone.
 
However, 51 percent of healthcare employees say their company does not have an official mobile messaging platform, despite the fact that 92 percent of these employees would use a company-wide mobile messaging platform if their employer decided to implement one. Sixty-four percent said it would make communication at their job easier, as well.
 
Of the 49 percent of healthcare employees who say their employer has an official mobile messaging platform, 16 percent say that platform is GChat and 11 percent say it's WhatsApp. What's more, even without an official mobile messaging platform, healthcare institutions recommend employees use consumer mobile messaging apps. None of these messaging apps or services typically follow HIPAA guidelines for messaging security.
 
"The global healthcare industry is under strict privacy and security regulations to protect patient information, but our study finds that the vast majority of healthcare institutions are not using mobile messaging services that are compliant with these regulations," Anurag Lal, CEO of Infinite Convergence Solutions, said in a press release statement. "Healthcare employees communicate inherently sensitive information, like patient prescriptions, medical information, etc., yet their employers do not have the proper mobile messaging security infrastructure in place to adhere to HIPAA or other regulatory requirements." 

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

Survey: Infrastructure, Interoperability Key Barriers to Global HIT Development

A new survey report from Black Book Research on global healthcare IT adoption and records systems connectivity finds nations in various phases of regional electronic health record (EHR) adoption. The survey results also reveal rapidly advancing opportunities for U.S.-based and local technology vendors.

Penn Medicine Opens Up Telehealth Hub

Philadelphia-based Penn Medicine has opened its Center for Connected Care to centralize the health system’s telemedicine activities.

Roche to Pay $1.9B for Flatiron Health

Switzerland-based pharmaceutical company Roche has agreed to pay $1.9 billion to buy New York-based Flatiron Health Inc., which has both an oncology EHR and data analytics platform.

Financial Exec Survey: Interoperability Key Obstacle to Value-Based Payment Models

Momentum continues to grow for value-based care as nearly three-quarters of healthcare executives report their organizations have achieved positive financial results from value-based payment programs, to date, according to a new study from the Healthcare Financial Management Association (HFMA).

Cerner, Children's National to Help UAE Pediatric Center with Health IT

Al Jalila Children's Specialty Hospital, the only pediatric hospital in the United Arab Emirates, has entered into an agreement with Washington, D.C.-based Children's National Health System to form a health IT strategic partnership.

Telemedicine Association Names New CEO

The American Telemedicine Association (ATA) has named Ann Mond Johnson its new CEO, replacing Jon Linkous who stepped down suddenly last August after 24 years as the organization’s CEO.