security
5 views | +0 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by Kaylee Shepherd
Scoop.it!

impact-hipaa-security-rules-healthcare-organizations-495

more...
Kaylee Shepherd's comment, April 1, 2014 9:40 AM
8. HIPAA, the Healthcare Information Portability and Availability Act of 1996, became law on August 21, 1996 and with it, came the promise of sweeping changes to the management and operation of security for healthcare organizations and the data they possess. The primary focus of HIPAA was to mandate that healthcare information become “portable” and “available” by legislating the use of uniform electronic transactions and other administrative measures. In forcing the healthcare industry to adopt uniform electronic transaction standards for Healthcare information, it was also necessary to protect that same information by including rules for how the information would be secured and safeguarded.
Kaylee Shepherd's comment, April 1, 2014 9:41 AM
9. The HIPAA Security rules mandate that if healthcare information (also referred to in the HIPAA text as protected health information) is stored or processed electronically, then the security rule applies to that covered entity. This would seem to exempt pure paper-based operations from the Security rules, but even these organizations likely use fax technology, which is covered by the HIPAA security rule.
Kaylee Shepherd's comment, April 1, 2014 9:42 AM
10. The HIPAA law requires each covered entity to assess their HIPAA compliance posture. This may performed by an internal or an external agency. The purpose of the assessment is to require each covered entity to examine their security practices against the HIPAA guidelines to determine where they are deficient.
Scooped by Kaylee Shepherd
Scoop.it!

Healthcare privacy, security 2014 predictions: Future trends | HealthITSecurity.com

Based on healthcare expert feedback and interviews in 2013, HealthITSecurity.com has come up with five predictions for 2014.
more...
Kaylee Shepherd's comment, March 28, 2014 9:48 AM
7. Healthcare organizations are starting to remove their data siloes and aggregate patient data to maximize its value and have a strong base for predictive analytics. With the benefit of these big data sets will come the new, different responsibilities to secure the patient data. There are some that believe HIPAA inhibits big data usage because healthcare organizations aren’t as free to share data as is needed to truly use the data.
Scooped by Kaylee Shepherd
Scoop.it!

Healthcare Security Improving But Still Needs Treatment -- Dark Reading

Healthcare Security Improving But Still Needs Treatment -- Dark Reading | security | Scoop.it
First quarter year-over-year data breach numbers declined in 2013, but data security black eyes still a symptom of healthcare's need for improved database security
more...
Kaylee Shepherd's comment, March 27, 2014 9:42 AM
1. Healthcare breaches have often been the result of employees taking data from databases and then storing the records as unencrypted, inadequately permissioned data on file servers, or even worse, transferring the results to poorly secured laptops and other personal devices. IT in healthcare orgs should be taking a closer look at what happens to information that’s been downloaded from databases and then made its way into spreadsheets, documents, and presentations on file servers. There will continue to be many more breaches and more data loss until companies start to protect the data itself.
Kaylee Shepherd's comment, March 28, 2014 9:45 AM
2. "In the US, federal regulators are very focused on healthcare in terms of their rulemaking and enforcement efforts under HIPAA," says Andy Green, technical content specialist for Varonis, who explains that practitioners he talks to are acutely aware of the pressure. "With recent changes to HIPAA, the penalties have become more severe--with a maximum of up to $1.5 million in annual fines."
Kaylee Shepherd's comment, March 28, 2014 9:46 AM
6. "I think many health care organizations are making improvements in securing their sensitive data, however, they are struggling with trying to protect their data with ineffective point solutions that don’t directly protect the data itself, which is the most critical asset to protect," Anderson says. "I think we’ll continue to see breaches and data losses occur within healthcare, as within other industries, until companies start to protect the data itself."
Scooped by Kaylee Shepherd
Scoop.it!

Overview: HIPAA: How Our Health Care World Has Changed

more...
Kaylee Shepherd's comment, March 27, 2014 9:48 AM
2. Hospitals fifty years ago would release information about any patient without question. Nowadays a hospital doesn't even give information to another hospital. HIPPA has many rules and regulations and if they are not followed there are some strict consequences such as possible jail time. That is why security is so strict in hospitals today.
Kaylee Shepherd's comment, March 28, 2014 9:31 AM
3. Two years after the first HIPAA rules came into force, health care providers and patients are probably much more aware of personal health information privacy and security issues than ever before. Unlike the financial services or even the manufacturing industries, the health care industry has been slow to adopt information technology.
Kaylee Shepherd's comment, March 28, 2014 9:34 AM
4. Ives Erickson and Millar offer a practical primer on HIPAA rules and how nurses can protect patient privacy, particularly in a busy, crowded health care environment, where conversations are easily overheard and IV bags labeled with names are discarded in open trash receptacles.