Privacy & Security

AHIMA pushes for patient matching
By Bernie Monegain | 11:21 am | October 31, 2013
"The mismatch between patients and their clinical data is a serious and growing patient safety issue," says Meryl Bloomrosen, vice president of thought leadership, practice excellence and public policy at AHIMA, the organization of health information management professionals.
Patient portals pose new security issues
By Gus Venditto | 01:31 pm | October 29, 2013
As healthcare facilities launch their own patient portals, technology is only the first step. Administrators are learning that decisions need to be made on everything from patient login protocols to support for patient record revisions.
CIO Spotlight Episode 9: Jeffrey L. Brown
By Erin McCann | 11:09 am | October 24, 2013
Jeffrey L. Brown, M.S., CIO of Lawrence General Hospital in Lawrence, Mass., talks about breach prevention through employee education, the expense of device encryption and mobile security at the 2013 Privacy and Security Forum in Boston.
HIPAA breach is bad news for 729,000
By Erin McCann | 08:37 am | October 23, 2013
Despite the revamped federal HIPAA Omnibus Rule which holds covered entities and business associates more accountable for failing to adequately protect patients' health information, some groups continue to make the same old avoidable mistakes.
Obama calls IT support for ailing site
By Mike Miliard | 12:06 pm | October 21, 2013
Three weeks after the disastrous launch of its health insurance marketplace, the Obama administration has vowed to redouble its efforts to fix its many glitches, promising a 'tech surge' to iron out its problems and improve the customer experience.
Hospital Facebook post leads to ID theft
By Erin McCann | 11:58 am | October 21, 2013
An Arizona hospital is facing scrutiny after one of its employees posted a workplace photo on Facebook, inadvertently including the protected health information and Social Security number of a patient.
Court ruling sparks patient privacy talk
By Erin McCann | 11:51 am | October 18, 2013
A recent court decision ruling that a HIPAA-covered entity was not liable for losing a hard drive containing patients' protected health information could have big implications for future cases in the realm of privacy and security.
New HIPAA rule could change BAA talks
By Mike Miliard | 12:19 pm | October 17, 2013
With an onus now on vendors to keep hosted data secure, that can make business associate agreements trickier than ever to negotiate as hospitals try to protect patient information and IT companies try to shield themselves from risk. Four providers offer tips from the trenches on getting the language right.
Lack of encryption brings breach blunder
By Erin McCann | 12:03 pm | October 16, 2013
Device encryption may seem like a fairly straightforward undertaking, but it's proven to be one HIPAA-covered entities and business associates frequently forgo -- much to their chagrin down the road, when they're notifying individuals of a privacy breach involving unencrypted personal data.
CIOs push for patient ID progress
By Neil Versel | 11:36 am | October 15, 2013
The patient identification issue refuses to go away, mainly because nobody has quite figured out how to assure proper patient identity in health information exchange. At the CHIME Fall CIO Forum in Phoenix, some leading hospital CIOs emphasized the importance of accurate patient matching.