Outsourcing Breach Response Lowers Costs
By Doug Pollack, Chief Marketing Officer for ID Experts
The Ponemon Institute last month released their 5th annual 2009 Annual Study: Cost of Data Breach. This year, the report explored several new areas and came up with some interesting and in some cases surprising conclusions…
On Managing Your Own Health Records
By Doug Pollack, Chief Marketing Officer for ID Experts
Microsoft HealthVault is designed to let us collect, store, and share health information critical to our family’s well-being and Google Health allows us to organize our health information all in one place, gather our medical records from doctors, hospitals, and pharmacies, and share our information securely with a family member, doctors or caregiver. For now, I probably won’t start trusting my medical history to either Microsoft or Google…
Healthcare Data Breaches Slow To Surface
By Doug Pollack, Chief Marketing Officer for ID Experts
The 2009 ITRC Breach Report had captured numerous healthcare data breaches since the September 23rd effective date for the HITECH Act. So, I’m perplexed as to why there aren’t any data breaches over 500 individuals yet listed by HHS. Surprisingly, there is nothing there.
HITECH Act and Protecting Health Privacy
By Doug Pollack, Chief Marketing Officer for ID Experts
These new regulations come at a time when healthcare breaches are on the rise; according to the 2009 ITRC Breach Stats Report healthcare breaches account for over 66 percent of all records breached this year, up from 20 percent in 2008. In fact, some of the largest names in healthcare suffered data breaches.
HIPAA and Video Surveillance of Surgery
By Rebecca Herold (The Privacy Professor) CIPP, CISSP, CISM, CISA, FLMI
A Rhode Island Hospital was fined $150,000 after a surgeon operated on the wrong finger of a patient, and now the hospital must install video cameras in all of its operating rooms. Of course video surveillance will not PREVENT such incidents from happening, but knowing such recordings are being made will likely make surgeons much more careful…
Protecting Your Privacy After You Die
By Rebecca Herold (The Privacy Professor) CIPP, CISSP, CISM, CISA, FLMI
Do surviving relatives have a right to read their deceased son’s, daughter’s, husband’s or wife’s communications with other people whose lives could then subsequently be completely altered as a result? What would your email service providers do with all your messages? Who should make that decision, and when should that decision be made?
The High Cost of HIPAA Privacy Violations
By Danny Lieberman, Security Expert and Founder of Software Associates
Data security vendors like Mcafee, IBM, Fidelis Security, Symantec, Verdasys, Reconnex, Vericept, Raytheon, Websense and Checkpoint have written thousands of white papers on how their data security products can help an organization be HIPAA compliant, but log-management cannot mitigate dumpster-diving, nor can it prevent bulk database dumps and file transfer.
Protecting Your Privacy During a Pandemic
By Rebecca Herold (The Privacy Professor) CIPP, CISSP, CISM, CISA, FLMI
Companies are requiring huge amounts of personal information for quarantine events, and not only about workers, but also family members and non-family individuals who share the same living quarters. What kind of information is your company requiring for quarantines?
Photo of Operating Room a HIPAA Violation?
By Rebecca Herold (The Privacy Professor) CIPP, CISSP, CISM, CISA, FLMI
It is possible that, if such policies exist and were created specifically for HIPAA compliance, your organization is viewing this policy noncompliance as being a HIPAA infraction because of the HIPAA requirements to have security/privacy policies and enforce them.
Medical Data Breach Reports Likely to Soar
By Doug Pollack, Chief Marketing Officer for ID Experts
In recent years, the number of reported data breaches at healthcare organizations has soared, despite laws requiring the groups to protect patient information. In May, a hacker stole more than 500,000 patient records from a state-run database that tracks drug prescriptions in Virginia — and then demanded a ransom to return the information.
