In an interview, Daniel advises practices to "bake in" security technologies and practices from the start of an EHR implementation. He advises practices to ask records software companies tough questions about privacy and security issues, including:
Officials with the HHS Office for Civil Rights shed some light on a number of security-related topics at a conference the office co-sponsored May 11-12 in the nation's capital. For example, Susan McAndrew, OCR's deputy director for privacy, revealed that the random HIPAA compliance audits called for under the HITECH...
The best way to persuade physicians to take information security seriously is to explain the business risks involved, says Robert Tennant, senior policy analyst with the Medical Group Management Association, the trade group for physician group practice administrators.
Whitehouse Cybersecurity Coordinator Howard Schmidt used wit to share his wisdom about healthcare information security in a rambling, folksy keynote address this week. He stressed that healthcare organizations of all sizes need to take security more seriously.
Social media "are a data security person's worst nightmare," says Sharon Finney, corporate data security officer at Adventist Health System. So Finney and her team spent more than six months crafting security policies for limited use of the new media.
Just how common are information breaches at hospitals? That depends on which survey you believe.
For example, a survey of 220 hospitals released April 20 found that 84 percent of U.S. hospitals have at least one breach incident a year, and 42 percent have at least 10 incidents. Earlier this month, another survey...
When it comes to keeping healthcare information private and secure, hospitals that focus primarily on regulatory compliance are making a huge mistake, says Sharon Finney, corporate data security officer for the 37-hospital Adventist Health System.