Requirements for a HIPAA compliant signature.
As the healthcare industry becomes paperless, many providers want to know how to stay HIPAA-compliant. This article takes a look at HIPAA compliant electronic signatures.
In a healthcare environment, there are two situations where signatures are always required. These are business associate agreements and the more common patient authorization. In both cases, the use of e-signatures is more efficient and convenient. Care should be taken, however, to meet applicable law for legal electronic signatures.
What to know about HIPAA compliant electronic signatures.
Health providers should turn to federal law for compliance guidance because what constitutes a HIPAA compliant electronic signature isn’t defined within the Health Insurance Portability and Accountability Act. The two pieces of legislation that do define legal e-signatures are the Federal Electronic Signatures in Global and National Commerce (ESIGN) Act and the Uniform Electronic Transactions Act (UETA).
Be aware of the following important information regarding these two federal acts:
- Legal Compliance: Be sure to clearly show the terms and intent of the signatory. The signers should have an option to receive a printed or emailed copy of the document.
- User Authentication: Adequate authentication can be achieved by two-step verification, completing “secret knowledge” questions, or adapting specialized e-signature software.
- Integrity: There must be a system in place to prevent digital tampering. You can accomplish this by using a secure e-signature tool.
- Non-Repudiation: HIPAA compliant electronic signatures should have a timestamped audit trail indicating dates, times, location, and the chain of custody.
To be sure you have HIPAA compliance electronic signatures choose an e-signature tool designed for legal compliance. Take a moment to discover what more you can do to keep your business moving with Acrobat Sign today.