Monthly Archives: August 2016


Group Emails and HIPAA, Is it a Violation?

Distribution of Email across network in red
Last week, Crozer-Keystone Health Systems sent a group email to approximately 900 bariatric surgery patients informing them of a support group. Unfortunately, the email was sent with the recipient addresses in the carbon copy field (cc) instead of the blind carbon copy field (bcc). This exposed all email addresses to every recipient. Is this a HIPAA Violation? There are several points to consider when answering the question. (more…)