Over two thirds of hospitals and healthcare service providers suffered privacy breaches last year

Posted on October 14th, 2011 by Andy Smith

Share |

A new report, entitled “Veriphyr’s 2011 Survey of Patient Privacy Breaches”, summarizes the findings of a Veriphyr survey on Protected Health Information (PHI) privacy breaches of compliance and privacy officers at mid to large sized hospitals and healthcare service providers.

According to the findings, more than 70 percent of the organizations in the study have suffered one or more breaches of PHI within the last 12 months. Insiders were responsible for the majority of breaches, with 35 percent snooping into medical records of fellow employees and 27 percent accessing records of friends and relatives.

Respondents were queried on their perceptions of privacy and compliance initiatives within their organization, adequacy of tools to monitor unauthorized access to PHI, and the number and type of breaches sustained in the past year.
“Given that data breaches of patient information cost healthcare organizations nearly $6 billion annually, we were not very surprised to discover that more than 70 percent of the organizations surveyed were victimized last year,” said Alan Norquist, CEO of Veriphyr. “However, we did not expect the prevalence of insider abuse reported, and that nearly 80 percent of the respondents feel they lack adequate controls to detect PHI breaches in a timely fashion.”

Some of the report’s key findings include:

Top breaches in the past 12 months by type:
Snooping into medical records of fellow employees (35%)
Snooping into records of friends and relatives
Loss /theft of physical records (25%)
Loss/theft of equipment holding PHI (20%)

When a breach occurred, it was detected in:
One to three days (30%)
One week (12%)
Two to four weeks (17%)

Once a breach was detected, it was resolved in:
One to three days (16%)
One week (18%)
Two to Four weeks (25%)

79% of respondents were “somewhat concerned” or “very concerned” that their existing controls do not enable timely detection of breaches of PHI

52% stated they did not have adequate tools for monitoring inappropriate access to PHI

Source:http://www.healthcaresecurityportal.com/Healthcaresecurity_news.asp?
articleid=266684arttitle=Over%
20two%20thirds%20of%20hospitals
%20and%20healthcare%20service%
20providers%20suffered%20privacy%
20breaches%20last%20year

Tags: access controls cost data detect detection employees equipment existing four healthcare hospitals Information large medical monitor monitoring Paste Your Post Content patient service survey unauthorized

This entry was posted on Friday, October 14th, 2011 at and is filed under Access Control, Health care, Market Use. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

* Mandatory Fields

Name

Email *

Phone number *

Question * (Max. 250 characters)

Security Key *

Over two thirds of hospitals and healthcare service providers suffered privacy breaches last year

Leave a Reply

Search

Categories

Tags

Ask For An Expert Advice

Recent Posts

Archives