Yes. You may use your Mednet email to exchange PHI with other Mednet email users. Emails between Mednet email accounts (YourName@mednet.ucla.edu) stay within the Mednet security perimeter and never travel unencrypted across the Internet. Additionally, they stay within the HIPAA covered entity where we have HIPAA-mandated safeguards for the protection of PHI. You may not use your Mednet email to send PHI to any non-Mednet email accounts such as Bruin Online (YourName@ucla.edu), Gmail, Yahoo, or others unless the email is appropriately secured.
No. Emails between Mednet and non-Mednet email accounts such as Bruin Online (YourName@ucla.edu), Gmail, Yahoo, or others do not provide protections for PHI and other Restricted Information. These emails travel unencrypted across the Internet. Unencrypted emails can be stored on non-HIPAA-compliant systems, which could be a violation of HIPAA for UCLA.
Spam (junk emails) should be filtered out of incoming Mednet emails, but sometimes spam still slips through. Here’s how to report spam so it can be reported back to the vendor to improve the filtering: Report spam.