Safety First: Could you have a Privacy Breach that Costs you $4.8M?

June 23, 2014 in Safety First Series

“Yes”, is the answer if you are New York-Presbyterian Hospital and Columbia University Medical Center.

New York-Presbyterian Hospital and Columbia University had a shared data network that was connected to the hospital information system. The breach of 6,800 patient records (names, clinical data, social security numbers, and more) was brought to light when an individual found their deceased partner’s personal information from the hospital on a public website searchable by Google.

The settlement is the largest fine by the United States Department of Health and Human Services for violating patient privacy — amounting to $4.8 million.

And this isn’t an isolated incident:
Just ask one of the 29.3 million patients whose health records have been compromised in HIPAA violations, since 2009,  about the impact: their privacy can never be replaced. The problem is growing. Within the last two years, there has been a 138% increase in HIPAA violations.

How should healthcare providers avoid these hassles, fines and in some cases loss of license or jail time? By making sure that they learn to know, love (maybe hate), and comply with HIPAA.

So what is HIPAA? HIPAA (the Health Insurance Portability and Accountability Act) was created to protect patient privacy. It requires that PHI (a patient’s Protected Health Information) is securely handled.  It is paramount that:

  • patient health information remains secure (physically and electronically)
  • medical professionals adhere to the “minimum necessary” standard for use and disclosure of PHI
  • patients have the right to access, use and disclose their health information

Over this summer CaptureProof is going to make sure you understand the ins-and-outs of HIPAA and how it may apply to you, as a patient or clinician. Stay tuned for next week’s post.

1. Business Insider: “Hospital To Pay Millions After Embarrassing Data Breach Put Patient Info On Google”
2. U.S. Department of Health & Human Services: Press Release: “Data breach results in $4.8 million HIPAA settlements”
3. U.S. Department of Human & Human Services: “Health Information Privacy”

#HIPAA #CaptureProof #SEEandKNOW #MedicalMedia #HealthcarePrivacy #HealthcareSecurity


AESAHAAPMAAlzheimer's diseaseAmerican Academy of NeurologyAmerican Epilepsy SocietyAmerican Heart AssociationAmerican Podiatric Medial AssociationBYODBeth Israel Deaconess Medical CenterBig DataBloombergCBSCaptureCapture of the DayCaptureProofCare CoordinationCelebrityChristmasClinical TrialsCommunicationCreativityDIA2014DLSDecorationsDemoDesert FootDesert Foot ConferenceDiabetic Limb Salvage ConferenceDisruptionDisruptive InnovationElectronic health recordEmailEpilepsyExponential MedicineGeriatric HealthGeriatricsHIEHIPAAHIPAA RulesHIPAA appHITHarvardHealthHealth 2.0Health Acceleration ChallengeHealth ITHealth Information ExchangeHealth Information TechnologyHealth TechHealth TechnologyHealthBeatHealthcareHealthcare ITHealthcare PrivacyHealthcare SecurityHealthcare TechnologyHealthtechHolidayIn the NewsInfographicInternIntern for a DayInternsJaime HeywoodJohns HopkinsLunch&Learn FridaysMEDy AwardMedia RxMedical MediaMedstartrMeghan ConroyMole GrowthMost DisruptiveNational Dog DayNeurologyNewsObamacareOncologyPHIParkinsonParkinson's diseasePatient privacyPharmaceuticalPodiatryRebecca BrownRural HealthSafetySafety FirstSan DiegoSecurity FirstSingularity UniversitySocial MediaStart Up ChallengeStartupsStefano BiniStrokeTelehealthTelehealth AccessibilityTelemedicineTemplatesThanksgivingThe National 2014The See-and-KnowTravis McKnightTutorialsUHCUNCUpdatesVAVentureBeatVeteransVideoVideosVisual InformationWearable IntelligenceWebinarbi-weeklycardiologycloudePHIhealth securityiCloudiHealthBeatmHealthmobile healthnutritionobesityphotographyphotosprivacysecuritysee-and-knowshow-and-tellsmartphonestbtthrowback thursdayxmed

This website uses cookies to allow us to see how our website and related online services are being used. By continuing to use this website, you consent to our cookie collection. More information about how we collect cookies is found here.