HIPAA Privacy Infographic

Caradigm, a population health company, recently sent me this HIPAA Privacy infographic. As a sucker for infographics, I had to share. While related to HIPAA, the BYOD data at the top of the infographic certainly paints an important picture for healthcare IT administrators. What data stands out to you?

Privacy Breaches

Data Sources:
http://www.arubanetworks.com/pdf/solutions/HIMSSSurvey_2012.pdf
http://www.pcworld.com/article/250642/85_of_hospitals_embrace_byod_survey_shows.html
http://apps.himss.org/content/files/FINALThirdAnnualMobileTechnologySurvey.pdf
“Fourth Annual Benchmark Study on Patient Privacy and Data Security.” Ponemon Institute. 12 March 2014.
http://www.redspin.com/docs/Redspin-2013-Breach-Report-Protected-Health-Information-PHI.pdf
http://www.fiercehealthit.com/story/ocr-levies-2-million-hipaa-fines-stolen-laptops/2014-04-23
http://www.fiercehealthit.com/story/boston-teaching-hospital-fined-15m-ephi-data-breach/2012-09-18
http://blogs.wsj.com/cio/2014/05/09/patient-data-leak-leads-to-largest-health-privacy-law-settlement/
http://www.nytimes.com/2011/09/09/us/09breach.html?pagewanted=all&_r=0

About the author

John Lynn

John Lynn

John Lynn is the Founder of the HealthcareScene.com, a network of leading Healthcare IT resources. The flagship blog, Healthcare IT Today, contains over 13,000 articles with over half of the articles written by John. These EMR and Healthcare IT related articles have been viewed over 20 million times.

John manages Healthcare IT Central, the leading career Health IT job board. He also organizes the first of its kind conference and community focused on healthcare marketing, Healthcare and IT Marketing Conference, and a healthcare IT conference, EXPO.health, focused on practical healthcare IT innovation. John is an advisor to multiple healthcare IT companies. John is highly involved in social media, and in addition to his blogs can be found on Twitter: @techguy.

3 Comments

  • I agree with Be6h that the employee negligence is that item that jumps out. Training would help. Refresher training would help. Leadership would help.

    I recently received two mammogram reports for a different person even though I spelled out my last name to the person folding them nicely and putting them in an envelope for me.

    Next day when I opened and realized the error I had to spend two hours of my time visiting the hospital Med Rec Dept. and practically had to fight with their representative to handle the ‘incident’. Since she didn’t know what a breach was or how to spell it, I can only assume that her training was inadequate or she needed additional training.

    Most everyone I know has accidentally been given another patient’s records at some point, negligence or not, so it would seem as though the ‘customer facing’ rep of a Med Rec Dept. would know how to handle it a lot better than what I experienced from her and her supervisor. There is a lot of work left here to do….

  • Pat,
    That’s a sad story. I think there’s a lot of improperly trained people running or working at various HIM departments. Definitely sounds like it was the case with the person you encountered.

Click here to post a comment
   

Categories