Emailing PHI


Note: In the past, sending PHI from ISSMS GMail required using Virtru. As of Feb 2018, this is no longer the case. Please use the new method below. You may safely uninstall Virtru.

Email encryption is the protection of email messages containing sensitive information (e.g., PHI, financial data and other federally and state protected data) from being read by entities other than the intended recipients. The message is encrypted before it leaves your computer and only decrypted when your recipient opens it, preventing the interception in transit.

While all email messages sent between Mount Sinai Health System (MSHS) entities are transmitted securely, email messages that contain PHI or other sensitive information and are destined for recipients outside of MSHS must be encrypted.

In order to encrypt an outgoing message from your Google Apps account, Include the word “secure” in square brackets in the “Subject:” line, as shown in the following example:

Unencrypted – Subject: Private information

Encrypted – Subject: [secure] Private information 

Please contact ASCIT if assistance is required. ASCIT is located on the 11th floor in Annenberg by the Library circulation desk, and can be reached at 212-241-7091 or (Mon-Fri: 8am – 8pm; Sat: 9am – 5pm; Sun: noon – 8pm).