Healthcare Information Security

Patient Privacy News

Virginia Mason Patient Data Privacy Breach Leads to Lawsuit

May 19, 2017 - After receiving $8.5 million in a medical negligence lawsuit, a Washington couple is filing another lawsuit against Virginia Mason Medical Center for its alleged actions following a patient data privacy breach. Matthew and Sarah Hipps, MD, claim that they received notification letters of the incident in question on May 1, 2017. The hospital had reported the month prior that they had discovered...


Articles

Senators, AHIMA Voice HIT Security, Interoperability Concerns

by

Proposed budget cuts and workforce reductions to HHS could have a potential negative impact on successfully implementing the 21st Century Cures Act, according to several senators. Specifically, HIT security, interoperability, and even advancing...

Maintaining HIPAA Privacy through Increased Patient Access

by

The HIPAA Privacy Rule is not something that covered entities or business associates can afford to ignore, even as technology continues to evolve and patients have increased access to their own records. AHIMA raised a key issue though in a recent...

Calif. Patient Privacy Case Reaches State Supreme Court

by

Oral arguments in a patient privacy case were presented to the California Supreme Court earlier this week, claiming that controlled substance prescription data collected and submitted to the state justice department should remain protected. In...

Report Finds 16.6M Affected by 2016 Healthcare Data Breaches

by

There was a record number of healthcare data breaches reported in 2016, with unauthorized disclosures accounting for the majority of those incidents, according to the Bitglass 2017 Healthcare Breach Report. Hacking and IT incidents still pose...

Vendor Risk Management Key Focus in Recent HITRUST Program

by

A new HITRUST exchange aims to help entities as they request and receive third-party security and privacy risk assessment information, streamlining the vendor risk management process. The HITRUST Assessment Exchange will utilize the HITRUST CSF...

MDLive Lawsuit Claims Patient Data Privacy Violations

by

Allegations were recently filed against a telehealth provider, claiming that the company committed patient privacy violations and disclosed customer information to a third-party organization. MDLive, Inc. is facing a class-action lawsuit filed...

Va. Data Breach Legislation Update Accounts for Payroll Data

by

Virginia recently updated its data breach legislation to require notification should payroll data become compromised. The amended statute applies to employers or payroll service providers who experience unauthorized access and acquisition of...

HHS OIG Phone Scam Raises Patient Data Privacy Concerns

by

The HHS Office of Inspector General (OIG) hotline number for reporting fraud was recently spoofed, according to an HHS statement. Individuals reported receiving phone calls claiming to be from HHS OIG, requesting that they confirm personal information...

Do Healthcare Data Breach Lawsuits Have Reasonable Standards?

by

Being able to prove fault in a healthcare data breach class action lawsuit is inherently difficult, but it is also important to understand the privacy expectations, according to a recent Corporate Clients Insight blog post. Data breach cases...

ONC Reiterates Healthcare Data Privacy, Security Need in PMI

by

The Precision Medicine Initiative (PMI) is a federal research program that hopes to improve how disease is treated, but there are still healthcare data privacy and security concerns. However, ONC explained in a recent blog post that keeping data...

Healthcare Data Breach Risk Higher in Larger Facilities

by

Having greater access to healthcare data, which is common in larger hospitals and teaching-focused facilities, can create a higher data breach risk, according to a recent study published by JAMA Internal Medicine. There is a “fundamental...

Maintaining Health Data Privacy in Precision Medicine Push

by

As cybersecurity threats continue to evolve and put PHI at risk, precision medicine guidelines need to be updated to account for new health data privacy threats, according to a recent opinion piece published in the Oxford University Press. The...

Roger Severino Appointed Office for Civil Rights Director

by

Roger Severino was recently appointed as the new OCR Director. At the time of publication, OCR had not yet released a statement on the move. Previously, Severino served as Director of the DeVos Center for Religion and Civil Society...

3 Critical Steps for Managing Third-Party Access to Your EHR

by

Before a hospital grants any kind of network access to users from an outside organization, like a physician’s practice, it must determine to whom access is granted and for how long. It is a complex and essential process. This article will...

St. Charles Privacy Incident Leads to DA Criminal Investigation

by

Oregon-based St. Charles Health System recently announced a privacy incident where an employee accessed approximately 2,500 patients’ electronic medical information without authorization. St. Charles explained in an online statement that...

How HIE Security Concerns Impact Patient Data Withholding

by

Concerns over HIE security and how patient data may be shared or accessed could lead to patients withholding some of their personal information, according to Commonwealth Fund President David Blumenthal, MD, MPP. Blumenthal explained in a recent...

N.M. Senate Committee Passes Data Breach Notification Bill

by

A New Mexico data breach notification bill was recently passed by a state Senate Committee, and will move onto the Senate Judiciary Committee, according to the Los Alamos Daily Post.   Rep. Bill Rehm introduced House Bill 15, and explained...

OIG Finds IT Weaknesses in MA Medicaid Management Info System

by

The Massachusetts Medicaid Management Information System (MMIS) was not adequately protected, which could have compromised the integrity of the state’s Medicaid program, according to a recent Office of Inspector General (OIG) report. These...

How HIPAA Regulations Allow for Patient Data Access

by

Patients being able to access their own information is an essential right under HIPAA regulations, according to the American Health Information Management Association (AHIMA). However, patient data access is often misunderstood, and individuals...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks