HIPAA, Patient Privacy, Healthcare Data Security BYOD

Administrative Safeguards

Possible Health Data Breaches From Theft, Unauthorized Access

May 19, 2015 - Even when covered entities implement sophisticated cybersecurity measures, health data breaches can still happen. It is important to not overlook seemingly simple security measures, such as installing proper locks on doors or even having an alarm system in place. Moreover, comprehensive administrative safeguards can help prevent unauthorized access, whether from a third-party or a former or...


Articles

Human Error Top Data Security Issue, Says Law Firm Report

It seems as if every week there is a new top data security issue for healthcare organizations to remain vigilant on. If nothing else, it further underlines why a well-rounded approach to data security is essential, and covered entities must ensure...

Phishing Scams: HIPAA Technical or Administrative Safeguard?

Phishing scams are not a new threat to the healthcare industry, but as other data security threats have evolved over time, so have phishing approaches. Early on, individuals might have gotten emails from someone claiming to be a prince from a...

Two Cases of Improper Disposal Cause Health Data Breaches

Health data breaches can be caused by numerous situations, and with the increase of electronic medical records and online issues, the proper care of paper documents can occasionally be overlooked. Regardless of how covered entities store and...

BCBS Mich. Employee Stole Patients’ Personal Information

A former Blue Cross Blue Shield Michigan (BCBSM) employee helped steal patients’ personal information, according to a Detroit Free Press article. In total, the information of 5,514 Blue Care Network and BCBSM members was compromised, which...

St. Louis Reports HIPAA Violation by County Employee

The Saint Louis County Department of Health is investigating a potential HIPAA violation where the personal information of inmates at a county jail was sent to a personal email address. A health department employee emailed a document that had...

Personal Data of 200,000 Compromised by Former Employee

A former employee improperly accessed the personal data of approximately 200,000 individuals. Often discussed on this website is the importance of healthcare organizations – and facilities that store individual’s healthcare information –...

Why HIPAA Administrative Safeguards Are Crucial

HIPAA administrative safeguards are designed to manage the selection, development, implementation, and maintenance of security measures. These measures keep electronic protected health information (ePHI) safe and help manage a covered entity’s...

Does Healthcare Security Interfere with Clinical Workflow?

Clinical workflows – an established process in a clinician’s daily activity of caring for patients – are increasingly integrating with healthcare information systems, and therefore, healthcare security.  The nation’s...

HIPAA Administrative Safeguards: A Basic Review

Healthcare organizations of all sizes must remain diligent in keeping themselves HIPAA compliant, especially when it comes to technical, physical, and administrative safeguards. Data breaches can occur in a variety of ways, which is why facilities...

Data Breach News: Cone Health Mailing Error; New Calif. Law

Cone Health of Greensboro, N.C. has alerted 2,076 Southeastern Heart and Vascular Center patients that their data was compromised as a result of a mailing error. Wfmynews2.com reports that a clerical mistake led to letters, which included patient...

Ponemon study analyzes data breach preparedness trends

The Ponemon Institute’s Second Annual Study on Data Breach Preparedness gauged 567 cross-vertical executives’ confidence in their organizations’ ability to respond to data breaches. Compared to last year’s findings, organizations...

Medical practice notifies 3,000 patients of data breach

Owensboro Medical Practice is currently conducting an internal investigation into a data breach that exposed 3,000 patients’ data. There are conflicting reports on the scope, in terms of the involvement of a business associate (BA), and...

Duke Health System notifies patients of data breach

Duke University Health System recently announced that it experienced a patient data breach on July 1 when an unauthorized person stole an unencrypted thumb drive from an administrative building. According to the patient notice on the Duke website,...

Children’s Mercy Hospital notifies employees of data breach

Children’s Mercy Hospital of Kansas City, Mo. recently alerted 4,076 employees’ data may have been exposed in a breach involving its online scheduling application. According to the Kansas City Star, Children’s Mercy Hospital...

St. Joseph Health sends patient breach notification letters

Among the items that can be lost in the mix when one healthcare organization takes over another is security and compliance. St. Joseph Health recently took over the former Redwood Regional Medical Group’s imaging center and has taken responsibility...

Access Health CT announces patient data breach

The Connecticut state health insurance exchange, Access Health CT, is handling a patient data breach that occurred when its vendor Maximus’s employee lost a backpack containing 413 patients’ information in a deli. According to the...

Data breach may affect all 62,000 UPMC employees

Another healthcare data breach involving employees continues to grow, as the range of employees affected by the University of Pittsburgh Medical Center (UPMC) breach has grown from a reported 27,000 to potentially all 62,000 employees, according...

Hurley Medical Center notifies employees of data breach

Hurley Medical Center is in the process of dealing with an employee data breach that was a result of an error made while the organization was working to resolve payment errors with its health plan. According to mlive.com, an email attachment...

ProMedica Bay Park Hospital announces data breach

ProMedica Bay Park Hospital of Oregon, OH is in the process of alerting more than 500 patients that their protected health information (PHI) had been breached after an internal employee inappropriately gained access to the information. According...

X

Sign up for our free HealthITSecurity.com newsletter and stay up to date with tips and advice on:

HIPAA
BYOD
Data Security
VDI
Cloud Security

Our privacy policy

no, thanks