Healthcare Information Security

Patient Privacy News

How EU Data Privacy Rule Could Impact US Healthcare Providers

by

US healthcare organizations that handle personal information of EU individuals will face stricter regulatory requirements and possibly hefty fines under the EU’s new data privacy rule set to take effect May 25, 2018. The General...

25% of Patients Did Not Access Data Over Patient Privacy Concerns

by

The HIPAA Privacy Rule guarantees patient data access as well as patient privacy.   While both guarantees are important, they can sometimes be at odds. The goal of HHS under the HIPAA Privacy Rule is to ensure patient privacy is...

Federal Lawsuit Filed Following Alleged CVS Health Data Breach

by

Three plaintiffs filed a federal lawsuit on March 21, 2018, claiming that a CVS Health data breach exposed the PHI of over 6,000 individuals, including revealing the HIV status of the individuals.  CVS Health, Caremark LLC (a...

Healthcare Data Breach Leads to Identity Theft Guilty Plea

by

Robert Ashley Bond of Thackerville, Oklahoma recently pled guilty to charges over his alleged involvement in a 2017 healthcare data breach.  The United States Attorney’s Office for the Eastern District of...

Uber Health Prioritizes Patient Data Security, HIPAA Compliance

by

Ridesharing company Uber launched a platform in March 2018 that aimed to provide more transportation options to patients. Individuals can use Uber Health to get a ride to their provider, while being reassured that HIPAA compliance remains...

Data Security Key Consideration for Healthcare Blockchain Success

by

Healthcare data security, data storage, data availability, and confidentiality are some of the most important characteristics in the application of healthcare blockchain, according to the latest edition of Blockchain in...

AHIMA Continues Push for Balance in Patient Data Access, Security

by

Healthcare professionals should have access to their patients’ entire medical history, but patient data access and data security measures must also be considered, AHIMA members said in meetings with Congress today. Access to...

Alabama Data Breach Notification Act Accounts for Medical Data

by

Alabama may soon join 48 other states in having its own state data breach notification legislation, as the Alabama Senate passed a bill earlier this month that would require companies to provide notice should they experience a breach. The...

What the CareFirst Data Breach Decision Means for Healthcare

by

In February 2018, the US Supreme Court denied certiorari in the CareFirst data breach case. CareFirst had requested the Court review the class action lawsuit against it that came from two separate incidents. The first occurred in June...

EmblemHealth Data Breach Leads to $575K NY State Settlement

by

New York Attorney General Eric Schneiderman announced that a $575,000 settlement had been reached in the EmblemHealth data breach case, following a mailing error incident that exposed 81,122 Social Security numbers. The health plan...

Common Rule Interim Version Released, Exempts HIPAA Research

by

More secondary research of EHR data will be enabled through the recently announced interim version of the Federal Policy for the Protection of Human Subjects, or the Common Rule. Certain low-risk studies, such as observational studies...

Hospital Data Breaches Most Common, Affect the Most Patients

by

Hospital data breaches accounted for approximately 30 percent of large data security incidents reported to OCR from 2009 to 2016, according to a study published in the American Journal of Managed Care (AJMC). The largest number of...

Business Associate Dismissal Denied in HIPAA Data Breach Case

by

A HIPAA data breach case that stemmed from a business associate disclosing PHI will not be dismissed, according to a US District Court decision. CVS Pharmacy, Inc. and Caremark Rx LLC (CVS) sought reimbursement from its business...

New York Reaches $1.15M Settlement over Aetna Data Breach

by

New York Attorney General Eric Schneiderman announced that a $1.15 million settlement has been reached following the Aetna data breach that occurred in 2017. Aetna sent letters to patients in the mail back in July 2017. Information about...

KS Healthcare Organization Fined over Unsecured Patient Data

by

Topeka, Kansas-based Pearlie Mae’s Compassion and Care LLC recently agreed to pay an $8,750 civil penalty after allegations that it had unsecured patient data in one of its office locations. Defendants Ann Marie Kaiser and Jenell...

$17M Settlement Agreement Reached in Aetna Data Breach Case

by

Aetna has reached a $17 million settlement following a reported data breach from 2017 where 12,000 individuals were impacted. The healthcare company Aetna sent letters in the mail where information about ordering prescription HIV drugs...

VA Patient Data Disclosure to HIEs Permitted in Proposed Rule

by

The Department of Veterans Affairs (VA) published a proposed rule that would amend its current regulations on allowing patient data disclosure to health information exchanges (HIEs). The updated rule would permit VA to release a...

20% of RNs Had Patient Data Breaches, Claim Response Confidence

by

There is potentially a disconnect between healthcare professionals’ confidence in preventing patient data breaches and actually being able to do so, according to recent research from the University of Phoenix. Twenty percent of...

Data Security Cited in ONC Health Data Exchange Framework Praise

by

ONC’s Trusted Exchange Framework and Common Agreement (TEFCA) draft has so far been met with industry support, with organizations lauding ONC in working to strengthen trust and support for nationwide interoperability while also...

HHS Final Rule Differs from HIPAA Regulations on Data Sharing

by

The Department of Health and Human Services’ (HHS) Substance Abuse and Mental Health Services Administration (SAMHSA) published a final rule that simplifies data sharing for patients’ substance abuse records, differing from...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks