Privacy and Security

As more providers are using digital data, privacy and security issues have become a greater concern. Protecting confidential patient information is also a priority for IT vendors, who are interested in offering solutions that come equipped with heightened security features. The industry-wide transition to HIPAA 5010 code set comes with heightened emphasis on privacy of patient data content in provider transactions, since 5010 aims to ensure that only the "minimum necessary" personal health information required for business purposes is included in a transaction.

RELATED STORIES:
Privacy hindering EHR progress, say researchers
HHS proposes new privacy, security rules

 
With an eye toward bolstering its BYOD capabilities in healthcare and beyond, IBM will acquire Bluebell, Pa.-based Fiberlink Communications, a mobile management and security company, for an undisclosed sum.
November 13, 2013
News
Another day, another breach. This time it's California-based DaVita HealthCare Partners that recently reported an unencrypted laptop containing patient protected health information was stolen from an employee's vehicle.
November 11, 2013
News
The Internal Revenue Service is now facing a class action lawsuit over allegations that it improperly accessed and stole the health records of some 10 million Americans, including medical records of all California state judges.
November 10, 2013
News
The Centers for Medicare & Medicaid Services CIO, Tony Trenkle, is stepping down this month amid the problematic rollout of the Healthcare.gov website, CMS announced in an email to the staff.
November 7, 2013
News
When in the realm of healthcare privacy and security, electronic health records may facilitate easier data exchange and data viewing, but the systems' audit trails make catching unauthorized viewers all the more simple, too.
November 5, 2013
News
Sometimes, developing new policies comes down to putting a foundation under a process that's already well under way, and perhaps in no sector of healthcare is this truer than in mobile health. That's how the bring your own device policy came about at one South Carolina hospital.
November 5, 2013
News
"The mismatch between patients and their clinical data is a serious and growing patient safety issue," says Meryl Bloomrosen, vice president of thought leadership, practice excellence and public policy at AHIMA, the organization of health information management professionals.
October 31, 2013
News
As healthcare facilities launch their own patient portals, technology is only the first step. Administrators are learning that decisions need to be made on everything from patient login protocols to support for patient record revisions.
October 29, 2013
News
Speaking at the AHIMA convention and exhibit in Atlanta on Monday, two officials from the CommonWell Health Alliance outlined their plans for the trade group's interoperability pilot, and spotlighted some of the ongoing health information exchange challenges facing providers and technology vendors today.
October 28, 2013
News
As HHS Office for Civil Rights finalizes rules for accounting of disclosures as part of the HITECH Act, the Health IT Policy Committee's Privacy and Security Tiger Team is crafting recommendations based on stakeholder input. So far, there are diverging views on the proposed rule.
October 24, 2013
News
The "real opponents" to a unique patient identification system "are the privacy advocates," said Sharp HealthCare CIO Bill Spooner in his call for a national patient ID at the CHIME Fall CIO Forum earlier this month. He was right.
October 23, 2013
News
Despite the revamped federal HIPAA Omnibus Rule which holds covered entities and business associates more accountable for failing to adequately protect patients' health information, some groups continue to make the same old avoidable mistakes.
October 23, 2013
News
When I lecture about the new generation of personal health records such as Google Health and Microsoft Healthvault, I emphasize that these applications are not covered by HIPAA.
January 4, 2009
Blog
Egypt's crisis has raised alarms about national security and economic impact for Americans if regime change leads to an anti-US government controlling a strong ally in the Middle East. This crisis raises another more personal concern for Americans that has been overlooked by the national media: The security and availability of your electronic medical records in the event of a government-imposed "kill switch" for the Internet.
February 15, 2011
Blog
As we all implement Meaningful Use stages 1, 2, and 3 from 2011-2015, we will increasingly share data among payers, providers and patients. Protecting privacy is foundational and we should only exchange data per patient preference. How will we achieve that in Massachusetts?
July 26, 2010
Blog
Privacy and security are foundational to healthcare reform. Patients will trust electronic healthcare records only if they believe their confidentiality is protected via good security.
October 7, 2009
Blog
Chilmark has not been a big fan of the National Health Information Network (NHIN) concept. It was, and in large part still is, a top heavy federal government effort to create a nationwide infrastructure to facilitate the exchange of clinical information. A high, lofty and admirable goal, but one that is far too in front of where the market is today.
October 2, 2009
Blog
In my role as vice-Chair of the HIT Standards Committee, I join many of the subcommittee calls debating the standards and implementation guidance needed to support meaningful use. Over the past few months, I've learned a great deal from the Privacy and Security Working group.
September 15, 2009
Blog
Today I led a HITSP Board meeting and we discussed the work being done in collaboration with the HIT Standards Committee.
September 9, 2009
Blog
An often times overlooked aspect to implementing an electronic health record (EHR) is the need for a solid technical infrastructure.
August 11, 2009
Blog
An often times overlooked aspect to implementing an electronic health record (EHR) is the need for a solid technical infrastructure.
August 11, 2009
Blog
A caution to readers: This post is about methods for certifying Electronic Health Record (EHR) technologies used by physicians, medical practices, and hospitals who hope to qualify for federal incentive payments under the so-called HITECH portion of the American Recovery and Reinvestment Act (ARRA).
August 4, 2009
Blog
A caution to readers: This post is about methods for certifying Electronic Health Record (EHR) technologies used by physicians, medical practices, and hospitals who hope to qualify for federal incentive payments under the so-called HITECH portion of the American Recovery and Reinvestment Act (ARRA).
August 4, 2009
Blog
At the July 21 meeting of the HIT Standards, we approved an initial set of standards for quality, clinical operations and security/privacy. Here's an update on the deliberations of the workgroups.
July 31, 2009
Blog