Healthcare Information Security

Health Data Encryption

Too Few Organizations Implement Data Encryption, Survey Says

January 20, 2016 - Despite its proposed importance to health data security, research shows that data encryption is not as widespread as one might hope. In a white paper published by Sophos, researchers show that data encryption is not a widespread security tactic across several different industries. In fact, only 44 percent of respondents reported making “extensive use” of data encryption technologies,...


How Health Data Sharing Relates to Healthcare Privacy


With the push toward nationwide interoperability, health data sharing is continually a top issue that covered entities are trying to overcome. Whether a healthcare provider is trying to connect to an HIE, or a research institute is trying to...

IU Health Arnett Healthcare Data Breach Affects 30K Patients


In late 2015, the Indiana University Health Arnett (IU Health Arnett) discovered that it fell victim to a healthcare data breach when an unencrypted storage device went missing from its emergency department. According to a hospital statement,...

FTC Settles Dental Software Patient Data Encryption Case


The Federal Trade Commission (FTC) recently settled a case involving alleged misleading information about how a dental practice software company handled patient data encryption. Henry Schein Practice Solutions, Inc. (Schein) is required to pay...

How Technical Safeguards Prevent Healthcare Data Breaches


As hacking and cyberattacks continue to occur and lead to healthcare data breaches, technical safeguards become increasingly important for healthcare organizations. Technical safeguards, as defined by the Department of Health and Human Services...

Using Health Data Encryption for Breach Prevention


Electronic health data has been the cause of considerable discussion throughout the healthcare industry. As more health information is stored on electronic platforms, that information is increasingly exposed to the potential threat of a healthcare...

OIG Identifies IT Security Issues Following OPM Data Breach


Following the massive data breach at the Office of Personnel Management (OPM) earlier this year, the Office of the Inspector General (OIG) has released an audit report detailing several IT security issues at the agency. Although the data breach...

DHHS Has Second Email Health Data Breach in Two Months


For the second time in two months, the North Carolina Department of Health and Human Services (DHHS) has experienced a health data breach due to an improperly encrypted email, according to The incident, which occurred in September,...

ONC Releases Health IT Certification ‘Companion Guides’


The Office of the National Coordinator for Health Information Technology (ONC) recently released extra guidance to assist health IT developers in understanding its 2015 Health IT Certification Criteria. Each certification criterion has its own...

NYC Health Center Notifies 1,500 Patients of PHI Data Breach


A New York City medical and mental health center recently reported a potential PHI data breach after a laptop containing patient information was stolen, underscoring the importance of encrypting devices on which patient health data is stored....

WEDI’s Devin Jopp Talks HIE Privacy, Interoperability Push


There is no question that HIE privacy and security are becoming more prevalent issues in healthcare, especially as the nationwide push for interoperability continues. But how can healthcare organizations overcome integration obstacles? What of...

Why Healthcare Data Encryption Should Be Considered


Healthcare data encryption is an increasingly popular option when it comes to keeping sensitive data - such as patient PHI - secure. With more providers implementing mobile devices, connecting to EHRs, and using connected devices, the issue over...

Ark., Md. Providers Notify Patients of Health Data Breaches


Recently, two health data breaches were reported in Arkansas and Maryland. Although neither of these incidents included billing or Social Security information, they did both result in HIPAA notification letters due to potential PHI disclosure....

Health Data Security Needs Improvement, Study Finds


There are several critical gaps within health data security, according to a recent study from Trustwave, and both healthcare professionals on the technical and non-technical side show that there is plenty of room for improvement. The majority...

Audit Finds Maryland Exchange Lacking in Data Security


The Maryland Health Benefit Exchange (MHBE), which is responsible for the establishment and operation of the state’s HIE program, was found to have data security and control deficiencies in its information systems, according to a recent...

Health Data Encryption Not Completely Effective, Study Finds


PHI has been at great risk lately as health data breaches are on the rise. To curb that risk, healthcare organization IT experts have been implementing various safeguards, including data encryption, the practice of encoding information so only...

PHI Health Data Breach at Children’s Hospital Affects 7,600


PHI data breach notification letters were sent to over 7,600 Akron Children’s Hospital patients and families, according to a hospital press release. The health data breach involved a misplaced device containing information about medical...

Employee Negligence Top Health Data Breach Issue, Report Says


A large portion of health data breach incidents are tied to insider activity, employee negligence, and physical theft of devices, according to a recent SurfWatch report. The 2015 Mid-Year Cyber Risk Report found that personal information is increasingly...

What Healthcare Can Learn from the OPM Data Breach


The US Office of Personnel Management (OPM) announced earlier this summer that it had fallen victim to a large-scale cybersecurity attack. The OPM data breach further proved that regardless of size, all organizations need to ensure they have...

OhioHealth Missing Flash Drive Leads to Health Data Breach


After misplacing an unencrypted flash drive, OhioHealth has issued health data breach notification letters, according to a statement issued on the company’s website. OhioHealth discovered that the flash drive was missing on May 29. While...


Sign up for our free newsletter and stay up to date with tips and advice on:

Data Security
Cloud Security

Our privacy policy

no, thanks