Healthcare Information Security

HIPAA Administrative Safeguards

Mayo Clinic Says 601 Patient Records Inappropriately Accessed

by Elizabeth Snell

The Mayo Clinic Health System in Red Wing, Minnesota reported that 601 patient records were inappropriately accessed by an employee. Mayo Clinic Public Affairs Manager Asia Zmuda confirmed in an email to HealthITSecurity.com that “an employee...

UPMC Reports Second Health Data Breach in Two Months

by Elizabeth Snell

The University of Pittsburgh Medical Center (UPMC) Health Plan recently reported a health data breach affecting 722 patients. This is the second health data breach reported at a UPMC facility in just under two months. A data file with certain...

Orlando Health Data Breach Affects 3,200

by Elizabeth Snell

An employee’s unauthorized access of 3,200 patient medical records has caused a potential health data breach at Orlando Health. During a routine patient record access audit on May 27, 2015, Orlando Health discovered that a certified nursing...

Why HIPAA Technical Safeguards Alone Are Not Enough

by Elizabeth Snell

HIPAA technical safeguards are an important part of any covered entity or business associate’s data security plan. However, that security measure by itself is not enough to ensure that a health data breach will never occur, according to...

Improper Disposals Lead to Potential Health Data Breaches

by Elizabeth Snell

Preventing potential health data breaches requires healthcare organizations to have the necessary physical, technical and administrative safeguards in place. If one area is lacking, or is simply overlooked, it does not matter how strong the other...

Did Failed Administrative Safeguards Cause Two Data Breaches?

by Elizabeth Snell

This site constantly underlines the importance of healthcare organizations keeping all of their safeguards up to date, as anything from failed administrative safeguards to failed physical safeguards can create privacy and security issues. Without...

HIPAA Violation Leads to Probation for Radiologist

by Elizabeth Snell

An Ohio radiologist is facing disciplinary actions from the state medical board after she reportedly committed a HIPAA violation. Dr. Aimee Hawley unlawfully accessed a colleague’s medical record, according to a DOTmed News article, and...

Medical Management Data Breach Impacting Multiple States

by Elizabeth Snell

Last week, we reported on a healthcare data breach where a third party facility, Medical Management LLC, connected with the University of Pittsburgh Medical Center (UPMC) reported that approximately 2,200 UPMC patients may have had their records...

Possible Health Data Breaches From Theft, Unauthorized Access

by Elizabeth Snell

Even when covered entities implement sophisticated cybersecurity measures, health data breaches can still happen. It is important to not overlook seemingly simple security measures, such as installing proper locks on doors or even having an alarm...

Human Error Top Data Security Issue, Says Law Firm Report

by Elizabeth Snell

It seems as if every week there is a new top data security issue for healthcare organizations to remain vigilant on. If nothing else, it further underlines why a well-rounded approach to data security is essential, and covered entities must ensure...

Phishing Scams: HIPAA Technical or Administrative Safeguard?

by Elizabeth Snell

Phishing scams are not a new threat to the healthcare industry, but as other data security threats have evolved over time, so have phishing approaches. Early on, individuals might have gotten emails from someone claiming to be a prince from a...

Two Cases of Improper Disposal Cause Health Data Breaches

by Elizabeth Snell

Health data breaches can be caused by numerous situations, and with the increase of electronic medical records and online issues, the proper care of paper documents can occasionally be overlooked. Regardless of how covered entities store and...

BCBS Mich. Employee Stole Patients’ Personal Information

by Elizabeth Snell

A former Blue Cross Blue Shield Michigan (BCBSM) employee helped steal patients’ personal information, according to a Detroit Free Press article. In total, the information of 5,514 Blue Care Network and BCBSM members was compromised, which...

St. Louis Reports HIPAA Violation by County Employee

by Elizabeth Snell

The Saint Louis County Department of Health is investigating a potential HIPAA violation where the personal information of inmates at a county jail was sent to a personal email address. A health department employee emailed a document that had...

Personal Data of 200,000 Compromised by Former Employee

by Elizabeth Snell

A former employee improperly accessed the personal data of approximately 200,000 individuals. Often discussed on this website is the importance of healthcare organizations – and facilities that store individual’s healthcare information –...

Why HIPAA Administrative Safeguards Are Crucial

by Elizabeth Snell

HIPAA administrative safeguards are designed to manage the selection, development, implementation, and maintenance of security measures. These measures keep electronic protected health information (ePHI) safe and help manage a...

Does Healthcare Security Interfere with Clinical Workflow?

by Dustin Lake

Clinical workflows – an established process in a clinician’s daily activity of caring for patients – are increasingly integrating with healthcare information systems, and therefore, healthcare security.  The nation’s...

HIPAA Administrative Safeguards: A Basic Review

by Elizabeth Snell

Healthcare organizations of all sizes must remain diligent in keeping themselves HIPAA compliant, especially when it comes to technical, physical, and administrative safeguards. Data breaches can occur in a variety of ways, which is why facilities...

Data Breach News: Cone Health Mailing Error; New Calif. Law

by Patrick Ouellette

Cone Health of Greensboro, N.C. has alerted 2,076 Southeastern Heart and Vascular Center patients that their data was compromised as a result of a mailing error. Wfmynews2.com reports that a clerical mistake led to letters, which included patient...

Ponemon study analyzes data breach preparedness trends

by Patrick Ouellette

The Ponemon Institute’s Second Annual Study on Data Breach Preparedness gauged 567 cross-vertical executives’ confidence in their organizations’ ability to respond to data breaches. Compared to last year’s findings, organizations...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks