RP1Cloud does not explicitly collect any identifiable ePHI of clients and their meeting attendees. PHI implies hard copy Protected Health Information which RP1Cloud would never have access to nor manage. The terms that applies more so to Pragmatic is ePHI, not PHI. ePHI is Electronic Protected Health Information. ePHI is PHI that is created, maintained, stored, accessed, transmitted or received electronically.
PHI under HIPAA as described in the HIPAA Security Rule ‘Data Classification & Handling’ means any information that identifies an individual with any of 18 information attributes and relates to at least one of the following:
- The individual’s past, present or future physical or mental health
- The provision of health care to the individual
- The past, present or future payment for health care
That being said, RP1Cloud, a division of Pragmatic, would not be made aware of these three conditions listed above nor would we be able to identify when the RP1Cloud service is being used with any of these three conditions present unless the Covered Entity specifically brought it to our attention.