by Evan Dumas | Apr 16, 2026 | Clinician Resources, Podcasts
In our latest episode, we explain why free email providers are inherently not HIPAA compliance compatible.
We discuss:
Why it’s necessary to have a Business Associate Agreement with your email service provider
Why clients can’t opt out of HIPAA
What requests for alternative or non-secure communication actually mean under the HIPAA Privacy Rule
What counts as Protected Health Information (PHI)
Why a free email address might be a red flag for prospective clients
How to get a BAA protected email, with a domain name or without
by Evan Dumas | Jan 8, 2026 | Clinician Resources, Podcasts
In our latest episode, we share what to do as a practice owner to prevent email hacks, and how to respond if one occurs.
We discuss:
Technical and behavioral measures to take to prevent email hacks
Mandating two-factor authentication system-wide
Education and staff training for prevention
Creating a shame-free security culture in your practice
Steps to take if you receive an email that looks suspicious
Steps to take if you find out your email has been hacked
Breach reporting timelines to be aware of
PCT resources that guide you through security training and awareness; risk analysis and mitigation planning; and breach investigation, documentation, and reporting
Ongoing training and security reminders for your team
by Roy Huggins | Jun 22, 2015 | Announcements, Clinician Resources
5 CE Clock Hours suitable for NC LPCs, LCSWs, and LMFTs A 5-hour training for private practice mental health counselors, marriage and family therapists, clinical social workers, and psychologists in psychotherapy practice to navigate the “digital ethics” and legal pitfalls in modern practice management. We will discuss: confidentiality and other HIPAA/ethics concerns in electronic communications […]
by Roy Huggins | Apr 27, 2015 | Communication Tech for Clinicians (Email, Texting, etc.), Clinician Resources, HIPAA and Security for Clinicians
I don’t do a lot of consulting for people who’ve experienced a “security breach” in their practices. But in the last year I’ve gotten 7 inquiries about security breaches from colleagues, and every single one was from someone whose email had been hacked into. So I’d like to make sure everyone knows the two things […]
by Roy Huggins | Apr 26, 2015 | Free Presentations
Clinicians are motivated by relationships. Our relationship with HIPAA has been rocky at best for a long time, but it doesn’t have to be that way.
by Roy Huggins | Feb 16, 2015 | HIPAA and Security for Clinicians, Clinician Resources
They say HIPAA is HIPAA is HIPAA. But can it work differently for mental health clinicians? Are we different in ways that make HIPAA different for us, too?
by Roy Huggins | Apr 27, 2014 | Ethics in Tech, Clinician Resources, Communication Tech for Clinicians (Email, Texting, etc.)
The new 2014 ACA Code has made sweeping changes to standard of care around using communications tech with clients. We discuss and explore the new standards.
by Roy Huggins | Apr 2, 2014 | Clinician Resources, Communication Tech for Clinicians (Email, Texting, etc.), Ethics in Tech, HIPAA and Security for Clinicians
The 2014 ACA Code of Ethics has added a new mandate to protect confidentiality of potential clients, which has an impact on email and new client contact.
by Roy Huggins | Last Updated: Jul 23, 2016 | Originally Published: Dec 15, 2013 | Telemental Health, Clinician Resources
A short primer on how to get started doing online therapy, sometimes called “Skype therapy,” with lots of links to help you find your way.
by Roy Huggins | Nov 18, 2013 | Product and Service Writeups, Clinician Resources, HIPAA and Security for Clinicians, Tech For Your Practice
Google will now give a Business Associate contract for Gmail, Drive, and Calendar for business. Does this mean health care folks can use those products now?
