Healthcare Information Security

PHI Security

CA Supreme Court Rejects Physician Patient Privacy Claim

July 20, 2017 - A California physician’s claim that the state medical board committed patient privacy violations when it obtained an individual’s prescription records without a warrant was recently rejected by the California Supreme Court. The medical board’s actions were justified, even if “accessing prescription records without good cause constitutes a significant intrusion,”...


More Articles

Patient Safety Critical Part of Healthcare Information Security

by Elizabeth Snell

Healthcare data breaches, denial of service (DoS) attacks, and ransomware attacks are a few of the potential threats to healthcare information security that could impact patient safety, according to a report published in The New England Journal...

Applying Healthcare Information Sharing to Data Security

by Elizabeth Snell

As cybersecurity threats continue to evolve, healthcare information sharing can be a boon to organizations of all sizes. Industry stakeholders can learn best practices, and see how others in the sector are working to prevent data security issues....

Secure Messaging Key Focal Point for Most Wired Hospitals

by Elizabeth Snell

Smart phones are becoming increasingly critical aspects for healthcare providers, with the American Hospital Association’s Hospital & Health Networks (H&HN) Most Wired rankings showing secure messaging a key tool for patients and...

95% of Healthcare Orgs Not Utilizing Risk Management Software

by Elizabeth Snell

Healthcare organizations continue to prioritize PHI security, but often have limited resources – such as access to risk management software – according to a recent Netwrix survey. Nearly all surveyed entities – 95 percent –...

Medical Record Security Key Focus in Indiana Senate Bill

by Elizabeth Snell

Database owners are now required to ensure medical record security by safeguarding healthcare data stored in their systems, according to a recently updated Indiana bill. Senate Bill 549 changed the definition of “abandoned” medical...

HIPAA Regulations Not Applicable in TN Supreme Court Case

by Elizabeth Snell

Medical authorization compliant with HIPAA regulations is not required when a pre-suit notice is sent to a single healthcare provider, according to a recent Tennessee Supreme Court ruling. In 2011, Deborah Bray filed a healthcare liability suit...

PHI of 13K Involved in Ransomware Attack at PA Health Clinic

by Kate Monica

On April 24, 2017, Family Tree Health Clinic discovered a ransomware attack potentially affecting PHI stored in its IT system, according to an online statement. The Pennsylvania health clinic immediately restored its system data using backup...

AMIA Stresses Patient Data Security Concerns in Federal Rule

by Elizabeth Snell

As technology and informatics tools have continued to evolve, more provisions are needed to bolster modern research while ensuring patient data security for research participants, according to the American Medical Informatics Association (AMIA)....

Saint Thomas Health Data Breach from Misplaced Documents

by Kate Monica

In April, Saint Thomas Health discovered a potential health data breach involving patient information at its facility in Murfreesboro, Tennessee. The breach potentially impacted 2,859 Saint Thomas patients, the organization said in an online...

Health System, Pharma Firm Report Cybersecurity Incidents

by Elizabeth Snell

Pennsylvania-based Heritage Valley Health System (HVHS) reported that it had experienced a cybersecurity incident on June 27, 2017. While HVHS did not specifically identify the type of ransomware attack, it said that it was “identified...

Incentivize Cybersecurity Best Practices for Data Security

by Elizabeth Snell

Maintaining strong patient data security in the ever-evolving healthcare IT space will heavily depend on strong cyber hygiene and proper cybersecurity best practices, according to American Medical Association Board of Trustees Secretary Jesse...

FTC Data Security Enforcement Standard Center in LabMD Case

by Elizabeth Snell

The US Court of Appeals for the Eleventh District listened to oral arguments last week in the case of LabMD, Inc. versus the Federal Trade Commission (FTC). The Court must determine if the FTC overstepped its authority with its data security...

Updated Google Policy May Affect Patient Data Security

by Elizabeth Snell

Google recently updated its privacy policy, which could have a positive effect on patient data security. As of last week, Google began removing private medical records from its search results. The Google “Removal Policies” page now...

Airway Oxygen Ransomware Attack May Affect PHI of 500K

by Elizabeth Snell

Michigan-based Airway Oxygen, Inc. is notifying patients that their PHI may have been involved in a ransomware attack that took place earlier this year. The medical equipment supply company explained in its notification letter to individuals...

Improper Disposal Creates PHI Security Concern for 1.8K

by Kate Monica

On June 16, the Texas Health and Human Services Commission (HHSC) notified patients of a recent potential security breach that may have involved the PHI of 1,842 residents of the Houston area. The incident was discovered when a box of forms containing...

Online Security Breach Exposes PHI of 5K Medicaid Patients

by Kate Monica

On April 7, 2017, officials from the Mississippi Division of Medicaid (DOM) discovered evidence of a potential online security breach exposing the PHI of approximately 5,220 patients. An investigation into the incident revealed the potential...

Cases Underline Audit Controls, Minimum Necessary Standard

by Elizabeth Snell

Healthcare organizations of all sizes need to utilize proper audit controls to ensure that employees are remaining compliant and following proper procedure. Lacking administrative safeguards could lead to numerous types of malicious activity,...

PHI Security Breach Potentially Affects 2K ND Medicaid Patients

by Kate Monica

On May 10, 2017, the North Dakota Department of Human Services (NDDHS) discovered a report of discarded NDDHS Medicaid claim resolution worksheet documents containing PHI. The papers were reportedly found in a dumpster in Bismark, North Dakota....

Improving Patient Privacy, Workflow with HIPAA Compliant Forms

by Elizabeth Snell

Cloud-based services are quickly becoming more common in healthcare, especially as organizations are trying to find HIPAA compliant ways of keeping ePHI secure. However, these tools cannot hinder how physicians and staff members perform daily...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks