Transmission of email via an SSL-encrypted connection meets the HIPAA requirement. It guards against eavesdropping which is the intent. Once the message reaches the destination it is up to the individual to secure the information.
> On Apr 23, 2014, at 8:20, "Jimmy Tran" <[email protected]> wrote: > > I ask this because I have a client who wants to be HIPPA complaint with > patient communication. I don’t know much about compliance with email except > that the email needs to be encrypted. Currently, they use email hosted by > bluehost via imap and over SSL. This just means the connection to bluehost > is encrypted, but by the time it hits the patient’s inbox, it is no longer > encrypted correct? > > TIA, > > Jimmy
