A Florida hospital is notifying approximately 40,000 of its emergency room patients about a breach incident involving stolen paper records that it believes might have affected about 1,500 of those patients.
Hospitals and clinics need to take a methodical approach to privacy and security as they prepare to qualify for electronic health records incentive payments from Medicare and Medicaid under the HITECH Act, security adviser Phyllis Patrick says.
The American Medical Association has adopted a new policy offering guidelines on physician use of social media that calls for refraining from posting identifiable patient information online to protect privacy.
Federal regulators have published a final rule carrying out the Genetic Information Nondiscrimination Act, which prohibits the use of genetic information to make decisions about health insurance and employment.
"The effort with which an organization can recognize, analyze and respond to an incident will limit the damage and lower the cost of recovery," says Don Weber, former incident response professional at IBM.