Caradigm, a population health company, recently sent me this HIPAA Privacy infographic. As a sucker for infographics, I had to share. While related to HIPAA, the BYOD data at the top of the infographic certainly paints an important picture for healthcare IT administrators. What data stands out to you?
Data Sources:
Click to access HIMSSSurvey_2012.pdf
http://www.pcworld.com/article/250642/85_of_hospitals_embrace_byod_survey_shows.html
Click to access FINALThirdAnnualMobileTechnologySurvey.pdf
“Fourth Annual Benchmark Study on Patient Privacy and Data Security.” Ponemon Institute. 12 March 2014.
Click to access Redspin-2013-Breach-Report-Protected-Health-Information-PHI.pdf
http://www.fiercehealthit.com/story/ocr-levies-2-million-hipaa-fines-stolen-laptops/2014-04-23
http://www.fiercehealthit.com/story/boston-teaching-hospital-fined-15m-ephi-data-breach/2012-09-18
http://blogs.wsj.com/cio/2014/05/09/patient-data-leak-leads-to-largest-health-privacy-law-settlement/
http://www.nytimes.com/2011/09/09/us/09breach.html?pagewanted=all&_r=0
Employee negligence is the highest cause. That’s one data point in this infographic for compliance officers to notice.
I agree with Be6h that the employee negligence is that item that jumps out. Training would help. Refresher training would help. Leadership would help.
I recently received two mammogram reports for a different person even though I spelled out my last name to the person folding them nicely and putting them in an envelope for me.
Next day when I opened and realized the error I had to spend two hours of my time visiting the hospital Med Rec Dept. and practically had to fight with their representative to handle the ‘incident’. Since she didn’t know what a breach was or how to spell it, I can only assume that her training was inadequate or she needed additional training.
Most everyone I know has accidentally been given another patient’s records at some point, negligence or not, so it would seem as though the ‘customer facing’ rep of a Med Rec Dept. would know how to handle it a lot better than what I experienced from her and her supervisor. There is a lot of work left here to do….
Pat,
That’s a sad story. I think there’s a lot of improperly trained people running or working at various HIM departments. Definitely sounds like it was the case with the person you encountered.