We often get asked the question of how long does a covered entity (CE) and business associate (BA) needs to keep a records of their emails?
According to HIPAA's security rule, covered entities (CEs) and business associates (BAs) must retain documentation related to security and protected health information (PHI) for at least six years from the date of its creation or the date when it last was in effect, whichever is later.
Paubox's DLP and email archiving is a great solution to address this component of HIPAA requirements.
Comments
0 comments
Article is closed for comments.