Health IT Pulse

Dec 11 2012   1:16PM GMT

Health care data breach history suggests future need for protection

Alex Delvecchio Alex Delvecchio Profile: Alex Delvecchio

Tags:
Data breach
health care data breach
HITECH Act

Nearly 500 total data breaches, each affecting at least 500 patients have been reported in the past three years as required by the HITECH Act, according to a report on the history of health care data breaches. There were more than 57,000 breaches that individually affected less than 500 people in that same period, underscoring the importance of a reliable data breach response plan.

The size of data breach determines whether it meets HIPAA reporting standards, but any breach should be considered significant due to possible legal ramifications brought on by the affected individuals. More than a third (38%) of breaches affected 10 to 100 patients, according to a survey of more than 450 health care employees. Data breaches appear to be increasing, with 45% of survey respondents reporting they’ve suffered five data breaches in the last two years, an increase from 29% two years ago.

Patient files contain private identifying data, like social security numbers, in addition to medical information. A data breach response plan should be in place so staff can follow security protocols in the wake of a breach and to prevent any further damage. Alerts should be sent both internally to the health care organization’s security team, and externally to the local police, in the case of a health care data breach.

The best protection strategy is to prevent data breaches. Respondents to a health care data breach survey agreed on few main areas of focus for data breach protection, including updating and testing the data breach response and identifying medical data theft.  Medical data theft can be more dangerous because the perpetrator’s motive is to steal information, whereas a laptop thief may only be after the device itself. Medical data theft occurred 1.85 million times in the U.S. in 2012.

The Sony PlayStation 3 network hack in 2011 was an example of a large-scale data breach, though it didn’t directly affect the health care industry. Sony was criticized for its reaction to the breach, particularly their lack of timely communication with affected users. All of their 77 million users were advised to check their accounts for hacked data. Sony hired an outside firm to investigate and informed the public of the data breach more than a week after it occurred. Users were left in the dark and off of the PlayStation Network while waiting for Sony’s response.

13  Comments on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.
  • SearchHealthIT
    Health care data breach history suggests future need for protection: http://t.co/88I8hoq7 #hcsm #HITsm #healthIT
    0 pointsBadges:
    report
  • SearchHealthIT
    Health care data breach history suggests future need for protection: http://t.co/88I8hoq7 #hcsm #HITsm #healthIT
    0 pointsBadges:
    report
  • SearchHealthIT
    Health care data breach history suggests future need for protection: http://t.co/88I8hoq7 #hcsm #HITsm #healthIT
    0 pointsBadges:
    report
  • Ed Burns
    History of data breaches suggests they're more common than thought http://t.co/pSVJ8Tsp
    0 pointsBadges:
    report
  • Ed Burns
    History of data breaches suggests they're more common than thought http://t.co/pSVJ8Tsp
    0 pointsBadges:
    report
  • Jenny Laurello
    Health care #databreach history supports need for more protection: http://t.co/cHWIJWjM #HIPAA #healthIT
    0 pointsBadges:
    report
  • Jenny Laurello
    Health care #databreach history supports need for more protection: http://t.co/QhZHXPax #HIPAA #healthIT
    0 pointsBadges:
    report
  • Jenny Laurello
    Health care #databreach history supports need for more protection: http://t.co/QhZHXPax #HIPAA #healthIT
    0 pointsBadges:
    report
  • Don Fluckinger
    Health care data breach history suggests future need for protection #HIPAA http://t.co/J00hSqOT
    0 pointsBadges:
    report
  • Cat Barone
    Health care data breach history suggests future need for protection #HIPAA http://t.co/J00hSqOT
    0 pointsBadges:
    report
  • HIPPOmsg
    "Health care data breach history suggests future need for protection" - helpful info to understand why we have HIPAA! http://t.co/fcc9n06P
    0 pointsBadges:
    report
  • HIPPOmsg
    "Health care data breach history suggests future need for protection" - helpful info to understand why we have HIPAA! http://t.co/fcc9n06P
    0 pointsBadges:
    report
  • Karima Zannotti
    Health care data breach history suggests future need for protection #HIPAA http://t.co/J00hSqOT
    0 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: