Privacy and Security

As more providers are using digital data, privacy and security issues have become a greater concern. Protecting confidential patient information is also a priority for IT vendors, who are interested in offering solutions that come equipped with heightened security features. The industry-wide transition to HIPAA 5010 code set comes with heightened emphasis on privacy of patient data content in provider transactions, since 5010 aims to ensure that only the "minimum necessary" personal health information required for business purposes is included in a transaction.

RELATED STORIES:
Privacy hindering EHR progress, say researchers
HHS proposes new privacy, security rules

 
Flanked by a number of Americans who have successfully enrolled for coverage on Healthcare.gov, President Barack Obama vigorously defended the benefits of the Affordable Care Act on Monday, even as the rollout of the federal insurance marketplace website has been riddled with errors that could take weeks to fix.
October 22, 2013
News
Three weeks after the disastrous launch of its health insurance marketplace, the Obama administration has vowed to redouble its efforts to fix its many glitches, promising a 'tech surge' to iron out its problems and improve the customer experience.
October 21, 2013
News
An Arizona hospital is facing scrutiny after one of its employees posted a workplace photo on Facebook, inadvertently including the protected health information and Social Security number of a patient.
October 21, 2013
News
A recent court decision ruling that a HIPAA-covered entity was not liable for losing a hard drive containing patients' protected health information could have big implications for future cases in the realm of privacy and security.
October 18, 2013
News
With an onus now on vendors to keep hosted data secure, that can make business associate agreements trickier than ever to negotiate as hospitals try to protect patient information and IT companies try to shield themselves from risk. Four providers offer tips from the trenches on getting the language right.
October 17, 2013
News
Device encryption may seem like a fairly straightforward undertaking, but it's proven to be one HIPAA-covered entities and business associates frequently forgo -- much to their chagrin down the road, when they're notifying individuals of a privacy breach involving unencrypted personal data.
October 16, 2013
News
With an eye toward improved interoperability and public trust in privacy protections, the Electronic Healthcare Network Accreditation Commission and the Texas Health Services Authority are partnering to develop a state accreditation program for health information exchanges in the Lone Star State.
October 16, 2013
News
The patient identification issue refuses to go away, mainly because nobody has quite figured out how to assure proper patient identity in health information exchange. At the CHIME Fall CIO Forum in Phoenix, some leading hospital CIOs emphasized the importance of accurate patient matching.
October 15, 2013
News
The Department of Veterans Affairs continues to be one of the biggest offenders of HIPAA privacy and security rules and has reported egregious breaches in recent years, affecting millions of veterans and active service members.
October 14, 2013
News
It's been almost two weeks since Obamacare's federal insurance exchange website went live, was inundated with traffic, went weird, was taken down for maintenance, then came back online still filled with glitches. Why did such a crucial site fail at such a critical moment? And what are the lessons that can be learned?
October 11, 2013
News
A Tennessee-based healthcare provider is notifying thousands of patients that their protected health information has been compromised following a privacy breach due to unencryption. The incident has prompted the hospital to move its records to an encrypted cloud-based server.
October 10, 2013
News
UnityPoint Health in West Des Moines, Iowa, is notifying 1,800 patients that their protected health records have been compromised after it was discovered that an employee of the health system's third party contractor gained unauthorized access to patient records.
October 3, 2013
News
I was recently asked to comment about the resources needed to comply with the Privacy Provisions in the Stimulus Bill.
April 1, 2009
Blog
There's been a lot of talk about privacy protections, or lack thereof, in electronic health records, particularly in context of the economic stimulus proposal that includes $20 billion for health IT.
February 13, 2009
Blog
When I read a headline like "Privacy advocates hail stimulus bills," I immediately wonder which privacy advocates.
February 5, 2009
Blog
Transparency, in the form of a complete, patient-centered and accessible health record is a policy principle that can drive the next wave of health care innovation. Investing exclusively in institutional EHRs will further stifle efficiency, innovation and improvement.
January 29, 2009
Blog