HIPAA Breach Notice
Guidance for applicants to not include full Taxpayer Identification Numbers (TINs) in email communication either in the body of the text or in attachments. Since TINs can often be providers social security numbers, CMS is required to send this information in a protected form such as redacting a portion of the TIN or sending information in a password protected document.
Issued by: Centers for Medicare & Medicaid Services (CMS)
Issue Date: August 29, 2014
DISCLAIMER: The contents of this database lack the force and effect of law, except as authorized by law (including Medicare Advantage Rate Announcements and Advance Notices) or as specifically incorporated into a contract. The Department may not cite, use, or rely on any guidance that is not posted on the guidance repository, except to establish historical facts.