Medical Identity Theft and HIPAA Rules for Social Media, Websites, Patient Review


The internet has permeated the healthcare industry in a big way, just as it has done so in other areas. The use of this all-powerful medium is indispensable for healthcare providers. While these healthcare providers consider the internet as being indispensable in enhancing patient experience and in facilitating speedy exchange of information, it is also their responsibility to ensure that they comply with regulations in this regard.

HIPAA has clear guidelines and rules on how Covered Entities and their Business Associates need to share information on the social media, websites and patient reviews. HIPAA Rules, HHS/OCR guidance and published Resolution Agreements spell these out. It is necessary and important for these HIPAA-governed entities to be completely aware of how to use these guidelines, because failure to do so invites penal action from HIPAA.

A webinar from MentorHealth, a leading provider of professional training for the healthcare areas, will clarify on all the aspects of medical identity theft and HIPAA rules for social media, websites, patient review. Offering this valuable learning is the highly respected expert on HIPAA Privacy, Security, Breach notification and Enforcement Rules, Paul Hales.

To register for this webinar, which is being organized on June 14, please visit .


Paul will get down to explaining how the internet, while being indispensable for this industry, is also vulnerable to misuse. It is a medium that can be stalked and hacked to extract medical information that is sensitive and valuable. It is estimated that medical information commands a higher price in the black market than social security information.

In view of this, the need for Covered Entities and their Business Associates to safeguard this information is paramount. Paul will describe what steps these entities can take to ensure this. He will explain in simple language HIPAA Rules, HHS/OCR guidance and published Resolution Agreements to use healthcare providers’ websites and social media and how to deal with patient reviews.

The aim of this webinar is to set out a set of step-by-step methods that will make it easy to show HIPAA compliance, the lack of which is penal action. This information is valuable to personnel who work in positions that deal with medical information and HIPAA, such as HIPAA Compliance Official, HIPAA Privacy Officer, HIPAA Security Officer, Health Information Technology Supervisor, Practice Manager, Risk Manager, Compliance Manager, General Counsel, Patient Engagement Coordinator, and Member, Board of Trustees Compliance Committee.

At this very interesting and valuable session, Paul will cover the following areas:

  • Social Media and Patient Engagement
    • Importance
    • Danger – Medical Identity Theft
  • The only 2 things required for Medical Identity Theft HIPAA Rules covering web sites and social media the rules are clear, unequivocal and easy to follow. See how one quick look at a health care provider’s web site or social media page exposes violations
  • The Simple Required HIPAA Safeguards for
    • Covered Entity’s Web Site
    • Social Media Web Site
  • HIPAA Rules covering Patient Reviews
    • Patient Review violations – Dangers
    • Patient Review HIPAA Safeguards
  • Discussion – Questions & Answers


About the expert: Paul, who is licensed to practice law before the Supreme Court of the United States, has a national HIPAA consulting practice based in St. Louis. He is the author of all the content in The HIPAA E-Tool, an Internet-based, Software as a Service product for healthcare providers and Business Associates.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s