For the second time in recent weeks, organizations with ties to the Mayo Clinic have announced staff firings as a result of inappropriate access to confidential personal health information.
Healthcare organizations need to improve the methods they use to objectively assess the severity of a security incident and whether it should be reported, says David Parks, a privacy officer and attorney.
When it comes to managing relationships with business associates to help with HITECH Act compliance, healthcare organizations could learn some lessons from the banking industry.
New York-Presbyterian Hospital/Columbia University Medical Center says a security breach may have exposed information on 6,800 patients on the Internet in July.
Of the 28 incidents added to the official federal tally of major healthcare information breaches in the past month, two-thirds involved the theft or loss of unencrypted computer devices.
Hospital association lawyer, Melissa Bianchi, testifying before a Senate panel seeks exemptions for healthcare providers from the bill's beach notification rules because they're already covered by HIPAA.
Several healthcare organizations have shared information breach horror stories that are enough to keep security officers awake at night wondering if similar incidents could happen on their turf.
A national chain of 200 long-term care and rehabilitation facilities has beefed up its use of encryption following two recent breach incidents involving the theft of unencrypted computer devices.
My fingers are crossed that the final version of the federal breach notification rule greatly clarifies when a breach has to be reported to the individuals affected as well as federal authorities.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.com, you agree to our use of cookies.
