When we send you an email, or you send an email to us, the information is not encrypted. This means a third party may be able to access the information and read it since it is transmitted over the internet. In addition, once the email is received by you, someone may be able to access your email account and read it. It is also possible that an email is mistakenly sent to another email address due to human error.
The federal government provides guidance on email and HIPAA (Health Insurance Portability and Accountability Act). Guidelines state that if a patient has been made aware of the risks of unencrypted email, and that same patient provides consent to receive health information via email, then a health entity may send that patient personal medical information via unencrypted email.