Privacy and Security

As more providers are using digital data, privacy and security issues have become a greater concern. Protecting confidential patient information is also a priority for IT vendors, who are interested in offering solutions that come equipped with heightened security features. The industry-wide transition to HIPAA 5010 code set comes with heightened emphasis on privacy of patient data content in provider transactions, since 5010 aims to ensure that only the "minimum necessary" personal health information required for business purposes is included in a transaction.

RELATED STORIES:
Privacy hindering EHR progress, say researchers
HHS proposes new privacy, security rules

 
Perhaps CD-ROMs are not the best storage media when it comes to safeguarding the health information of your patients -- especially when one of your staff members accidentally donates them to a children's art project, as what recently happened at a Virginia-based health system.
December 18, 2014
News
Sony Pictures last week notified employees that their medical data and Social Security numbers were swiped in a cyberattack, a breach that has prompted privacy advocates to reaffirm the need to implement further data safeguards.
December 16, 2014
News
In the second biggest HIPAA breach ever reported, one of the nation's largest healthcare systems has notified some 4.5 million of its patients that their personal information has been snatched by cybercriminals.
December 12, 2014
News
To those shirking their HIPAA privacy and security duties: get ready to pay up. That's the message the Department of Health and Human Services is sending after it set records this May for imposing the largest HIPAA monetary fine to date on two entities found to be seriously lacking in the security arena.
December 12, 2014
News
The risk of experiencing a data breach "is higher than ever," according to Experian's second annual industry forecast, which shows how the "consistently high value of healthcare data on the black market" means there will be little respite for an industry already beleaguered by cyber threats.
December 12, 2014
News
Having established a level of trust and familiarity with electronic health records over the past few years, increasing numbers of U.S. patients are looking for more advanced features, such as access to doctors' notes and test results, according to a new survey from the National Partnership for Women & Families.
December 11, 2014
News
Despite what seems to be some sustainable momentum beyond the initial rush of excitement, worries remain about Apple's HealthKit platform -- with security concerns and its potential to flood doctors with unnecessary data topping the list. Could the latest big thing eventually go the way of Google Health?
December 10, 2014
News
Despite what seems to be some sustainable momentum beyond the initial rush of excitement, worries remain about Apple's HealthKit platform -- with security concerns and its potential to flood doctors with unnecessary data topping the list. Could the latest big thing eventually go the way of Google Health?
December 10, 2014
News
A five-facility mental health organization in Alaska has agreed to pay up and shape up its HIPAA compliance program after a Department of Health and Human Services investigation found the group failed to appropriately safeguard patient data.
December 9, 2014
News
If you think you're able to dodge a data breach without putting in the work, think again. This year, organizations have reported more data breaches than the year prior, seeing on average a 10 percent jump in breach frequency. So what are they doing to improve these numbers? A new study says: not enough.
December 5, 2014
News
Texas Health Resources CIO Ed Marx and chief information security officer Ron Mehring circled the boardroom table handing out envelopes.
December 5, 2014
News
If you knew that assailants or robbers had continuous access to your house, how would that change the way you manage home security? And if the door and window locks, fences, even the big-ticket alarm systems were not enough?
December 5, 2014
News
Healthcare providers are migrating from large, independent stand alone organizations into complex new ecosystems. Health Information Exchanges (HIEs) are evolving and more affordable transfer of clinical information and other of data. Healthcare security as we know it is changing quickly! This white paper discusses Fortinet's secure health architecture and how to achieve end-to-end security for a highly secure healthcare organization.
November 11, 2014
Resource
sites/default/files/resource-media/pdf/secure_next_generation_healthcare_wp-final_51914.pdf
Protect
Healthcare organizations are key targets for sophisticated data breaches. How can you improve defenses? Paul Smith of Ascension Health offer today's top strategies and insights. What you can do to prepare for and reduce attacks.
November 11, 2014
Resource
Protect
http://www.fortinet.com/webinars/defending-against-advanced-healthcare-breaches.html
Distributed Healthcare Networks have grown in complexity over the last decade as they expand Network Access and add more sophisticated Security Technologies to protect their networks. In addition, the adoption of standards such as the Payment Card Industry Data Security Standard (PCI DSS) and HIPAA have also improved the overall security of data but come with challenges in meeting continually changing and expanding requirements. Learn how to overcome these challenges and accelerate PCI compliance while simplifying your network security.
November 11, 2014
Resource
sites/default/files/resource-media/pdf/secure-distributed-healthcare-networks.pdf
Protect
Delivering IT in healthcare can be challenging. Supporting clinicians that are ever more mobile, administering systems that become more complex each day, and dealing with tighter budgets are all in your days work. You know that every minute of inefficiency is costing your hospital money, and maybe worse, creating satisfaction, security or even safety issues for your patients.
November 7, 2014
Resource
Protect
Recently, a powerful trend toward "patient engagement" has emerged driving transformation in how healthcare providers deliver services to those most impacted by healthcare decisions: patients. While this potential revolution in provider/patient relationships is taking place, healthcare IT organizations are facing serious challenges of their own. How can they best service those in the front-line engaging with the patients to drive enhanced patient care?
November 7, 2014
Resource
Do Not Protect
IT departments today are finding themselves squarely at the epicenter of healthcare compliance scrutiny. One of the many regulations to which they must adhere is “meaningful use,” which ties financial incentives to usage of electronic health records as part of the Medicare and Medicaid EHR Incentive Program. Now, with meaningful use deadlines fast approaching and concerns about compliance reaching the highest levels of healthcare organizations, IT professionals are finally being invited to step out of the basement and into the boardroom.
November 7, 2014
Resource
Protect
The security threat landscape is rapidly evolving: from risks with the proliferation of mobile devices to the increased sophistication of organized cyber criminals. Healthcare has a significant burden with the dubious distinction of having the highest per record data breach cost among all regulated industries. This webinar covers the ten essential practices for security, the different threat patterns to be aware of and how you can take steps to remediate these threats and protect your organization.
November 3, 2014
Resource
Do Not Protect
http://himssmediawebinars.com/registration/webinar/navigating-new-healthcare-security-landscape-rethinking-your-security-posture?affiliatedata=websiteHITN
The shift from fee-for-service to value-based care is creating significant financial and performance pressures for healthcare providers. As Health IT leaders work to harness cloud, Big Data, mobile, and social technology to optimize their EMR, building a trusted hybrid cloud infrastructure lays the foundation for team-based care. In this whitepaper, learn how a hybrid cloud framework enables coordinated care to improve patient care delivery, lower IT costs, and increase business agility -- including recommended steps and solutions.
October 15, 2014
Resource
sites/default/files/resource-media/pdf/hybrid_cloud_powers_next_generation_health_it_emc_whitepaper.pdf
Protect
This webinar will cover malicious cybercrime, the evolution of hackers, and how it affects the corporate IT landscape. Hear about how NaviSite and Alert Logic have teamed up to provide relevant security solutions and strategies for businesses to use to prevent harmful cyber activity affecting the Healthcare Industry.
October 8, 2014
Resource
Do Not Protect
http://himssmediawebinars.com/registration/webinar/emerging-threats-healthcare-strategies-defense?affiliatedata=website
One hour webinar that walks through the Dell Mobile Clinical Computing solution and why you may want to consider it for your environment.
September 22, 2014
Resource
Protect
http://www.dell.com/learn/us/en/70/videos~en/documents~eseminar-mobile-clinical-computing.aspx
Learn how Mater Health improves access to clinical data with a virtual desktop environment built on robust Dell Wyse zero clients. Benefits experienced by Mater include improved speed of initial access to clinical data by 80% and projected increase of endpoint lifespan by 50%.
September 22, 2014
Resource
sites/default/files/resource-media/pdf/2013-mater-health-10012021.pdf
Protect
Examine the total economic impact that you can realize by using Dell™ Mobile Clinical Computing (MCC). Discover how Tallahassee Memorial HealthCare (TMH) achieved clinical efficiency, data security and IT productivity by implementing Dell MCC.
September 22, 2014
Resource
sites/default/files/resource-media/pdf/total-economic-impact-mcc-solution.pdf
Protect
One of the enduring ironies when it comes to health IT is the contradiction between the understandable concern among healthcare stakeholders over data security and the apparent willingness of patients to share their own information. Two recent polls bear this out.
February 6, 2014
Blog
The recent FTC decision in the LabMD case has HIPAA-watchers scratching their heads, tugging their beards, and generally wondering about reconciling FTC-style litigation-based regulation with OCR-style rule-based regulation of health care data privacy and security.
January 30, 2014
Blog
IT may not get much credit when it comes to saving patient lives, but there's no denying that cloud technologies can help do just that. By making medical data immediately available to providers, cloud-enabled applications can share test results, identify medication allergies and improve patient outcomes.
January 29, 2014
Blog
Recently I was invited by the Patient Privacy Rights Foundation to lead a discussion that addressed patient privacy concerns and potential solutions for doctors working with EHRs.
January 27, 2014
Blog
2014 represents a transformative year for healthcare in the United States. Exciting innovations are making a significant impact on the industry, and I am hopeful that we will see a transformation across the industry to more consumer-centric and value-driven healthcare.
January 14, 2014
Blog
Here we go again! As I've stated many times before, no pictures in the hospital and no posting them on social networking sites.
December 9, 2013
Blog
The good news for patients is that their personal health information is becoming more secure all the time. But it takes unfortunate breaches, such as an event that occurred in Charlotte in August 2013, to highlight the need for increasingly stronger data-security provisions.
November 25, 2013
Blog
A common and somewhat unique aspect to EHR vendor contracts is that the EHR vendor lays claim to the data entered into their system. It confounds us as to why healthcare organizations let their vendors of choice get away with this.
November 19, 2013
Blog
The idea of risk management in information security has always been a bit difficult to pin down. For example, there is too little historical and behavioral data to identify trends or make predictions with confidence.
October 16, 2013
Blog
Organizations are showing a remarkable appetite to innovate using the latest in cloud technology, but also concerns over whether the cloud is secure enough to protect electronic patient health information. And everyone wants to know - is my service provider compliant?
September 20, 2013
Blog
There is no question that the resources required to process, analyze, and manage petabytes of genomic information represent a huge burden. That burden becomes even greater when one factors in the need to handle these data in compliance with an alphabet soup of regulatory regimes.
September 4, 2013
Blog
If you’re a healthcare provider who has shied away from the cloud due to security concerns, you could be making a grave mistake. In fact, moving to the cloud can increase data security.
August 29, 2013
Blog
Sage Healthcare Division, a unit of Sage North America, announced today that its client, Dr. Moore & Associates, a primary care practice in Brooklyn, NY, is among several of the company's clients to successfully attest to Stage 1 meaningful use under the Medicare EHR Incentive Program.
May 25, 2011
Press Release
A team from the Department of Veterans Affairs (VA) and Stanford University is exploring a new approach to clinical trials that experts say will cost less and be easier to translate into practice.
May 9, 2011
Press Release
Hannibal Regional Healthcare System, which operates a not-for-profit community hospital in northeast Missouri, has selected the Sunrise Enterprise suite of solutions from Allscripts.
May 6, 2011
Press Release
Selecting the correct software to use in a medical practice is critical for physicians, particularly now that all technology-based practices must be compliant with the government's updated standard for electronic claims transactions. The new standard, known as HIPAA Version 5010, will be required by January 1, 2012. The American Medical Association (AMA) and the Medical Group Management Association (MGMA) have made the software selection process easier by developing an online directory of software vendors that helps physicians determine whether the vendors’ practice management systems are compliant with the 5010 standard. A companion piece to the recently released Selecting a Practice Management System toolkit, the Practice Management System Software Directory provides detailed vendor profiles, enabling physicians to easily choose the software that best fits their needs.
April 28, 2011
Press Release
PhoneFactor, the leading global provider of phone-based authentication, today released the results of its recent survey on multi-factor authentication. The results indicate organizations that utilize security tokens, many of which are already frustrated with the burden tokens place on their IT departments and end users, are being driven to action by the recent RSA breach.
April 27, 2011
Press Release
CDW LLC (CDW), a leading provider of technology solutions to business, government, education and healthcare, today released the findings of its Video Conferencing Straw Poll Report. The report finds that half of companies use some form of video conferencing today and another quarter plan to implement the technology within the next two years. Video conferencing adoption, driven by reduced operating costs, improved decision making and improved communication, will branch out beyond simple peer-to-peer devices into more cutting-edge collaborative video conferencing systems, such as immersive telepresence.
April 25, 2011
Press Release
To ensure downtime access to current patient data after moving to electronic medical records (EMRs) and electronic medication administration records (eMARs), Hancock Regional Hospital in Greenfield, IN implemented NetSafe, Interbit Data's downtime protection and business continuance solution.
July 29, 2010
Press Release
Twin County Regional Hospital is expanding its McKesson Paragon hospital information system to increase efficiency and help improve patient safety across the entire medical community of Galax, Va. and surrounding areas.
January 8, 2010
Press Release