Privacy & Security

Subcontractor snoops on patient records
By Erin McCann | 11:36 am | October 03, 2013
UnityPoint Health in West Des Moines, Iowa, is notifying 1,800 patients that their protected health records have been compromised after it was discovered that an employee of the health system's third party contractor gained unauthorized access to patient records.
Unencryption at core of HIPAA breach
By Erin McCann | 08:51 am | October 02, 2013
A San Jose, Calif.-based hospital is notifying patients that their protected health information has been compromised after an unencrypted laptop was stolen from the hospital over the weekend.
Patients still ill-informed about EHRs
By Mike Miliard | 11:55 am | September 30, 2013
Large majorities of Americans have concerns about the security of their electronic health records, and more than two-thirds of patients say their physicians have not adequately explained the switch to digital records, a new poll shows.
'Ethical hacker' calls BYOD a nightmare
By Erin McCann | 11:33 am | September 27, 2013
With bring your own device policies at healthcare organizations seeing an upward trend across the country, many say there's good reason to be apprehensive -- resistant even -- to the BYOD movement.
Second big breach for Florida hospital after employee snooping
By Erin McCann | 11:57 am | September 26, 2013
A Florida hospital has notified thousands of patients that their protected health information and Social Security numbers may have been inappropriately accessed by a former employee for tax fraud purposes.
Patient privacy evangelist, analytics officer spar over data rights
By Erin McCann | 12:04 pm | September 25, 2013
In healthcare, virtually nothing is black and white. From Obamacare to varying payment and care models, healthcare issues live in the land of gray and opaque where dissenting opinions reign. The idea of patient privacy and consent proves no exception.
More HIPAA enforcement coming
By Erin McCann | 11:13 am | September 24, 2013
When OCR Director Leon Rodriguez took the stage Sept. 23 at the HIMSS Media and Healthcare IT News Privacy and Security Forum, the timing was perfect. With the HIPAA Omnibus Final Rule taking effect on the same day, Rodriguez talked to the increased enforcement to come.
Ready or not: HIPAA gets tougher today
By Erin McCann | 11:06 am | September 23, 2013
OCR Director Leon Rodriguez offered new details on the Omnibus Final Rule as he took the stage at the two-day Healthcare IT News and HIMSSMedia Privacy & Security Forum in Boston.
Has the cloud found its moment?
By Mike Miliard | 11:59 am | September 20, 2013
Long looked upon warily by healthcare security experts, cloud technology could soon find more favor as new rules bring clarity and assign responsibility for privacy protections.
ONC, OCR publish model privacy notices

By Mike Miliard | 11:43 am | September 17, 2013
With the deadline for the HIPAA Omnibus Rule less than a week away, the Office of the National Coordinator and the HHS Office for Civil Rights are giving a hand to providers and payers, issuing examples of the notices of privacy practices that must be furnished to patients and plan members under the law.