Date Reviewed/Revised Date Reviewed/Revised: Implemented: By:
Company Policy: Unless approved by the Information Management Officer, or other person(s) designated by company management, email may not be automatically forwarded to an external destination.
Intent of Company Policy:
To prevent the unauthorized or inadvertent disclosure of confidential company or protected health information.
Policy Explanation and Compliance Guidelines:
1. For the purpose of this policy, unauthorized disclosure is defined as the intentional or unintentional revealing of confidential company or protected health information to an individual who does not have a need to know that information. 2. This policy includes all employees, vendors, and agents operating on behalf of our company whose job position involve the use of and access to email data containing confidential or protected health information. 3. Employees, vendors, and agents operating on behalf of our company, must exercise utmost caution when sending any email from our internal network to an outside point. 4. For the purpose of this policy email forwarding is defined as email resent from our internal network to an outside point. 5. Forwarded email must be critical to our business function(s) and be encrypted in accordance with established guidelines set forth by our Information Management Officer. 6. Any employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.
7. Inquires concerning this policy should be directed to ____________________________
who may be reached by calling (__ __ __) __ __ __ - __ __ __ __ or by dialing extension __________.