Episode 615: Your Data is Not Your Own: Why VC-Owned Healthcare Wants Your Information

In our latest episode, we share a cautionary tale about a Talkspace client whose healthcare information was weaponized against them.

We discuss:

Venture capital firms buying therapy practices, monetizing, and weaponizing client data to make more money
A recent case where a Talkspace client’s data was read aloud in court
Platforms using client communication to train LLMs and AI platforms
How these platforms are profoundly detrimental to clients, therapists, and the profession
Why when something seems too easy and convenient, you are often the product (and your clients are the product)
How these companies operate outside of HIPAA Security Rule standards
The importance of vetting platforms and having BAAs for safeguarding client information

Episode 614: AI Is Just The Latest Example – Why Training Matters For Every New Tool

In our latest episode, we talk about the importance of proficiency and competency with any tool or modality used in your practice.

We discuss:

Why training is necessary with any tool or modality used in your practice, not just AI
What the professional ethics codes say about competence and proficiency for tools and modalities used
How PCT evolved to help clinicians manage the advent of new technology
Our upcoming CE training on how to evaluate AI and incorporate it into your practice and workflow ethically and effectively
How training can set you apart and strengthen the therapeutic alliance

Episode 612: Free Email Isn’t Worth It: Why It’s a Bad Idea and What To Do Instead

In our latest episode, we explain why free email providers are inherently not HIPAA compliance compatible.

We discuss:

Why it’s necessary to have a Business Associate Agreement with your email service provider
Why clients can’t opt out of HIPAA
What requests for alternative or non-secure communication actually mean under the HIPAA Privacy Rule
What counts as Protected Health Information (PHI)
Why a free email address might be a red flag for prospective clients
How to get a BAA protected email, with a domain name or without

Episode 611: The Real Risks of Using Non-Vetted AI Platforms with Client Information

In our latest episode, we continue our series on AI use within therapy practices by sharing how to explain to your team members why using non-vetted AI platforms is not permissible.

We discuss:

What counts as Protected Health Information and a breakdown of the often misunderstood 18th identifier under HIPAA
How therapy progress notes and clinical notes are inherently identifying
AI re-identification risk and why this is possible
Why AI use involving client information must be vetted and HIPAA compliance-compatible
What happens when you input data into personal AI platforms
What we mean by AI governance, and why personal AI platforms can’t be governed
Why lack of AI governance is a significant liability
Impermissible disclosures under HIPAA
Why proving low probability of compromise is difficult after the fact, and what this means for your ability to mitigate risk
Managing the emotional pieces of identifying risk and risk mitigation in your practice

Episode 610: Don’t Panic – But Do Pay Attention: What the Darksword iPhone Exploit Actually Means

In our latest episode, we share information about the recent Darksword iPhone exploit, and what that means for therapy practice owners regarding device security.

We discuss:

What you need to know about this exploit
Device hardening within your security circle
Device security gaps we see in everyday practice
Pairing technical security measures with behavioral security measures
PCT’s resources around risk management and device security

v2.10.0

Scheduled Maintenance

We will be temporarily taking the website offline at 10:00 PM Pacific (1:00 AM Eastern) tonight, July 6, in order to make some improvements. We plan to be back online by midnight Pacific (3:00 AM Eastern). We apologize for any inconvenience this may cause. Dismiss