You are required to protect two types of information: Protected Health Information (PHI) and Personally Identifiable Information (PII). Most regulations concern PHI and PII in the electronic form, but some states include PHI and paper documents.
Many carriers require agents who are transmitting any client information on a CPU, laptop or other device to have the device encrypted. Encryption changes data so that the contents cannot be understood if intercepted.
There are several technologies capable of implementing full drive encryption. For example:
For devices such as a smartphone or tablet, you will need to contact your cell phone carrier or manufacturer for the exact process to encrypt your device.
Emails and reports attached to emails containing PHI or PII must be encrypted during transmission.
Sending an email to SMS? Use SMS’s free Secure Email System
Instructions on Reporting a Breach Or Security Incident
When you identify a potential breach you should immediately report the breach to Senior Market Sales and the carrier.
Also, be sure to report thefts to local law enforcement and retain all documents, if applicable.
Examples of Potential Breach or Breach
Mis-directed fax, sending an application to the wrong email address, unauthorized access (taking a spouse with to visit a client, stolen laptop), etc.
Email the SMS Compliance Department or call 1.800.786.5566 Ext. 3694.
Report by mail to:
Humana, Inc. Privacy Office
500 W. Main Street
Louisville, KY 40202
Call the AlertLine at 1-888-891-8910
Call the Ethics help line at 1-800-472-8348