HIPAA compliant email postscript

Many US healthcare professionals add postscripts to their email signature lines to encourage the security of protected health information under the Health Insurance Portability and Accountability Act. Such postscripts are relatively new and as a practical matter may be restricted in length by the length of the signature field in various email clients, commonly about 1000 characters. The technical standards of HIPAA's security rule require the use of encryption, such as PGP, for electronic communication of protected health information over open networks. An example of a postscript that aims to be HIPAA compliant, which Wikipedians are encouraged to improve upon, is below. This starts with the sender's contact information:

First Name Last Name

Organization

example@example.com

w xxx.xxx.xxxx

p xxx.xxx.xxxx

c xxx.xxx.xxxx

http://example.com

This message contains private information for the person named above. Others are prohibited from disclosing the information to anyone else. If you received this message without a PGP wrapper, assume it was compromised, delete it, tell the sender and try to tell the person named. Do not send someone else's private information if you're not reasonably certain the recipient has a need to know and that the message will be kept private. Plain email is not private. In some cases, such as health information protected under the Health Insurance Portability and Accountability Act or information protected under the Privacy Act, plain email may be illegal. If you must relate a person's identity to their private information in email, insist your recipients provide you a PGP public key. You can get my public key from the keyservers or my webpage.