Privacy & Security

Docs feel brunt of Anthem breach
By Erin McCann | 09:23 am | November 22, 2013
When a medical privacy breach occurs, it's most often the patient who gets notified that their personal information was compromised, not the provider. But that's not always the case.
Dropbox in healthcare: A love-hate thing
By Mike Miliard | 11:47 am | November 19, 2013
Researchers and other clinicians love it. Privacy officers, not so much. The popular file hosting site isn't HIPAA compliant, and hasn't shown much interest in business associate agreements.
Stage 2 changes are unlikely, says ONC
By Neil Versel | 07:28 am | November 19, 2013
Wish there could be a delay of Stage 2 meaningful use? Talk to the Centers for Medicare & Medicaid Services, not the Office of the National Coordinator for Health Information Technology. And don't hold your breath.
Homeland Security has tip for healthcare
By Erin McCann | 11:52 am | November 15, 2013
Data breaches and cybersecurity threats in healthcare are going to happen. It's virtually unavoidable. What can be avoidable, however, are the messy consequences of substandard risk assessment strategies and inadequate threat response.
Charging for data: What is too much?
By Mike Miliard | 12:01 pm | November 13, 2013
As patient engagement gains momentum, and technology enables easier access to personal health information, many providers still charge money for copies of records. That's allowed under HIPAA and HITECH. But is it wise?
CMS CIO to step down amid shakeup
By Anthony Brino | 11:06 am | November 07, 2013
The Centers for Medicare & Medicaid Services CIO, Tony Trenkle, is stepping down this month amid the problematic rollout of the Healthcare.gov website, CMS announced in an email to the staff.
Nosy employees? Follow the audit trail
By Erin McCann | 11:42 am | November 05, 2013
When in the realm of healthcare privacy and security, electronic health records may facilitate easier data exchange and data viewing, but the systems' audit trails make catching unauthorized viewers all the more simple, too.
AHIMA pushes for patient matching
By Bernie Monegain | 11:21 am | October 31, 2013
"The mismatch between patients and their clinical data is a serious and growing patient safety issue," says Meryl Bloomrosen, vice president of thought leadership, practice excellence and public policy at AHIMA, the organization of health information management professionals.
Patient portals pose new security issues
By Gus Venditto | 01:31 pm | October 29, 2013
As healthcare facilities launch their own patient portals, technology is only the first step. Administrators are learning that decisions need to be made on everything from patient login protocols to support for patient record revisions.
CIO Spotlight Episode 9: Jeffrey L. Brown
By Erin McCann | 11:09 am | October 24, 2013
Jeffrey L. Brown, M.S., CIO of Lawrence General Hospital in Lawrence, Mass., talks about breach prevention through employee education, the expense of device encryption and mobile security at the 2013 Privacy and Security Forum in Boston.