A patient asks for a copy of last month's letter. Your portal's slow, the patient's not registered, and they want it on their phone tonight. Sending a PDF by email feels easy but is exactly how breaches happen.
There's a right way to share patient PDFs by email. Here it is.
Use a portal where you can
Secure patient portals are the gold standard. The patient logs in, the document stays in the system, audit trail is automatic. If your practice has a portal, use it and offer email only as a fallback. Many breaches are practices defaulting to email when the portal works fine.
Password-protect for email
If email is the only option, password-protect the PDF. Standard convention: patient's date of birth in DDMMYYYY format. The patient knows it; you don't need to communicate it. If a recipient who isn't the patient receives the email, they can't open the file.
Verify the email address
The biggest source of misdirected patient emails is wrong addresses in the record. Verify the address by reading it back to the patient before sending, especially for sensitive content. A two-minute confirmation prevents the breach.
Don't include sensitive content in the body
The email body is not encrypted. Don't repeat diagnoses, test results, or treatment plans in the body. The attachment is the document; the body should say "Please find the document we discussed attached. Use your date of birth to open it." That's it.
FAQ
Is email ever acceptable for patient PDFs?
With password protection, generally yes — but a secure portal is preferable. Match the channel to the sensitivity of the content.
What if the patient forgets their date of birth password?
Unlikely — they always know their own DOB. If the DDMMYYYY format is the issue, send a clear hint in the email.
Can I text a PDF to a patient?
Most messaging apps don't encrypt PDFs sufficiently for clinical use. Email with password protection is safer; portals safer still.
Should I always password-protect, even for routine letters?
For patient-identifying content, yes. The discipline of always protecting prevents the slip-up on the day you should have.
Secure patient sharing is habit, not heroics. Password-protect in Flint and the everyday discipline prevents the rare disaster.