Ross Friedberg, an Associate in the Health Care and Life Sciences practice, in the Washington, DC, office, and Bonnie Scott, a law clerk in the Health Care and Life Sciences practice, in the Washington, DC, office, co-wrote an article titled "How To Physically Secure Electronic PHI." (Read the full version — subscription required.)
Following is an excerpt:
As the technologies used to deliver telehealth services become more complex, telehealth providers as well as other Health Insurance Portability and Accountability Act "covered entities" have an increasingly demanding role to play in ensuring the security of protected health information (PHI).
To fulfill this role, both telehealth providers and their business associates (such as the information technology companies and data storage providers that support telehealth platforms) must implement not only technical safeguards but also physical security measures. From locks, to security guards, to alarm systems, physical security measures are a critical piece of the overall data protection equation.