EHR, Meaningful use, ICD-10, Electronic Health Records

Administrative Safeguards

Why HIPAA Technical Safeguards Alone Are Not Enough

June 15, 2015 - HIPAA technical safeguards are an important part of any covered entity or business associate’s data security plan. However, that security measure by itself is not enough to ensure that a health data breach will never occur, according to Kate Borten, president and founder of The Marblehead Group. In an interview with HealthITSecurity.com, Borten discussed how covered entities and their...


Articles

Improper Disposals Lead to Potential Health Data Breaches

Preventing potential health data breaches requires healthcare organizations to have the necessary physical, technical and administrative safeguards in place. If one area is lacking, or is simply overlooked, it does not matter how strong the other...

Did Failed Administrative Safeguards Cause Two Data Breaches?

This site constantly underlines the importance of healthcare organizations keeping all of their safeguards up to date, as anything from failed administrative safeguards to failed physical safeguards can create privacy and security issues. Without...

HIPAA Violation Leads to Probation for Radiologist

An Ohio radiologist is facing disciplinary actions from the state medical board after she reportedly committed a HIPAA violation. Dr. Aimee Hawley unlawfully accessed a colleague’s medical record, according to a DOTmed News article, and...

Medical Management Data Breach Impacting Multiple States

Last week, we reported on a healthcare data breach where a third party facility, Medical Management LLC, connected with the University of Pittsburgh Medical Center (UPMC) reported that approximately 2,200 UPMC patients may have had their records...

Possible Health Data Breaches From Theft, Unauthorized Access

Even when covered entities implement sophisticated cybersecurity measures, health data breaches can still happen. It is important to not overlook seemingly simple security measures, such as installing proper locks on doors or even having an alarm...

Human Error Top Data Security Issue, Says Law Firm Report

It seems as if every week there is a new top data security issue for healthcare organizations to remain vigilant on. If nothing else, it further underlines why a well-rounded approach to data security is essential, and covered entities must ensure...

Phishing Scams: HIPAA Technical or Administrative Safeguard?

Phishing scams are not a new threat to the healthcare industry, but as other data security threats have evolved over time, so have phishing approaches. Early on, individuals might have gotten emails from someone claiming to be a prince from a...

Two Cases of Improper Disposal Cause Health Data Breaches

Health data breaches can be caused by numerous situations, and with the increase of electronic medical records and online issues, the proper care of paper documents can occasionally be overlooked. Regardless of how covered entities store and...

BCBS Mich. Employee Stole Patients’ Personal Information

A former Blue Cross Blue Shield Michigan (BCBSM) employee helped steal patients’ personal information, according to a Detroit Free Press article. In total, the information of 5,514 Blue Care Network and BCBSM members was compromised, which...

St. Louis Reports HIPAA Violation by County Employee

The Saint Louis County Department of Health is investigating a potential HIPAA violation where the personal information of inmates at a county jail was sent to a personal email address. A health department employee emailed a document that had...

Personal Data of 200,000 Compromised by Former Employee

A former employee improperly accessed the personal data of approximately 200,000 individuals. Often discussed on this website is the importance of healthcare organizations – and facilities that store individual’s healthcare information –...

Why HIPAA Administrative Safeguards Are Crucial

HIPAA administrative safeguards are designed to manage the selection, development, implementation, and maintenance of security measures. These measures keep electronic protected health information (ePHI) safe and help manage a covered entity’s...

Does Healthcare Security Interfere with Clinical Workflow?

Clinical workflows – an established process in a clinician’s daily activity of caring for patients – are increasingly integrating with healthcare information systems, and therefore, healthcare security.  The nation’s...

HIPAA Administrative Safeguards: A Basic Review

Healthcare organizations of all sizes must remain diligent in keeping themselves HIPAA compliant, especially when it comes to technical, physical, and administrative safeguards. Data breaches can occur in a variety of ways, which is why facilities...

Data Breach News: Cone Health Mailing Error; New Calif. Law

Cone Health of Greensboro, N.C. has alerted 2,076 Southeastern Heart and Vascular Center patients that their data was compromised as a result of a mailing error. Wfmynews2.com reports that a clerical mistake led to letters, which included patient...

Ponemon study analyzes data breach preparedness trends

The Ponemon Institute’s Second Annual Study on Data Breach Preparedness gauged 567 cross-vertical executives’ confidence in their organizations’ ability to respond to data breaches. Compared to last year’s findings, organizations...

Medical practice notifies 3,000 patients of data breach

Owensboro Medical Practice is currently conducting an internal investigation into a data breach that exposed 3,000 patients’ data. There are conflicting reports on the scope, in terms of the involvement of a business associate (BA), and...

Duke Health System notifies patients of data breach

Duke University Health System recently announced that it experienced a patient data breach on July 1 when an unauthorized person stole an unencrypted thumb drive from an administrative building. According to the patient notice on the Duke website,...

Children’s Mercy Hospital notifies employees of data breach

Children’s Mercy Hospital of Kansas City, Mo. recently alerted 4,076 employees’ data may have been exposed in a breach involving its online scheduling application. According to the Kansas City Star, Children’s Mercy Hospital...

X

Sign up for our free HealthITSecurity.com newsletter and stay up to date with tips and advice on:

HIPAA
BYOD
Data Security
VDI
Cloud Security

Our privacy policy

no, thanks