HIPAA Compliance & Privacy: Email Disclaimer Notifications

Expired

The Federal HIPAA Security Rule states that all emails that contain confidential Protected Health Information (PHI) must contain an email Disclaimer Notification Statement.

The Compliance and Privacy department recommends that everyone add an email disclaimer as part of their signature block. That way it is automatic, and you are not having to retype it every time you send emails containing PHI.

Below is a recommended email disclaimer statement: However, your business unit is welcome to create and publish its own.

This electronic mail message, including any attachments, may be confidential or privileged under applicable law. This email is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this email, you are notified that any use, dissemination, distribution, copying, disclosure, or any other action taken in relation to the content of this email including any attachments is strictly prohibited. If you have received this email in error, please notify the sender immediately and permanently delete the original and any copy of this email, including secure destruction of any printouts.

confidentiality notice picture

Please keep in mind the 18 HIPAA Identifiers. Any of the three listed together along with any personal health information is considered HIPAA and is also covered by Federal and State Privacy Laws.

  1. Patient names  
  2. Geographical elements (such as a street address, city, county, or zip code)
  3. Dates related to the health or identity of individuals (including birthdates, date of admission, date of discharge, date of death, or exact age of a patient older than 89)
  4. Telephone numbers
  5. Fax numbers
  6. Email addresses
  7. Social security numbers
  8. Medical record numbers
  9. Health insurance beneficiary numbers
  10. Account numbers
  11. Certificate/license numbers
  12. Vehicle identifiers
  13. Device attributes or serial numbers
  14. Digital identifiers, such as website URLs 
  15. IP addresses
  16. Biometric elements, including finger, retinal, and voiceprints
  17. Full face photographic images 
  18. Other identifying numbers or codes 

Staying Safe and Secure is our Priority

If you would like general information about HIPAA, click to view the HIPAA page. Or, if you would like information regarding Travis County’s HIPAA Policies, or to report a suspected privacy concern, contact the Travis County Compliance and Privacy Officer