Report Faults Security Efforts for Patient Information

January 12, 2021

As ransomware and cyber attacks continue to target patient information of hospitals and other healthcare organizations at an alarming rate, the pressure is mounting for facility managers and IT professionals to take adequate measures to protect the private information of patients. A new report suggests many have a long way to go in achieving compliance with HIPPA requirements.

The Office for Civil Rights (OCR) at the U.S. Health and Human Service recently released a HIPAA Audits Industry Report that could be quite helpful to covered entities and business associates for tackling HIPAA compliance as we enter the new year, according to The National Law Review.  The report examines OCR’s findings from HIPAA audits conducted during 2016-2017 of 166 healthcare providers and 41 business associates. The audits examined mechanisms for compliance, identified promising practices for protecting the privacy and security for health information, and discovered vulnerabilities that might have been overlooked by OCR enforcement activity. Among the findings:

• Approximately 70 percent of covered entities used breach-notification letters that failed to satisfy regulatory content requirements, such as a description of the electronic personal health information (ePHI) breached and steps individuals can take to protect themselves from additional harm.

• Covered entities struggled to implement requirements for risk analysis and risk management. The report highlighted that only 14 percent of audited covered entities “substantially fulfilled” responsibilities regarding safeguarding of ePHI through risk analysis mechanisms, and only 6 percent adequately fulfilled requirements to implement appropriate risk-management mechanisms to reduce risks and vulnerabilities to a reasonable and appropriate level.

Click here to read the article.

See the latest posts on our homepage


Topic Area: Information Technology

Recent Posts
Recent Posts

OSHA-Approved State Standards Help Curtail COVID-19 Cases

In lieu of federal OSHA standards, 28 states have implemented their own emergency standards


Visitor Management Takes Center Stage in COVID-19 Era

More than ever, facilities need control over patients, families, visitors, and outside contractors


COVID-19: Challenges Continue for Environmental Services, Maintenance

Praise for healthcare workers is well deserved, but it left out nursing aides, housekeepers, medical assistants and food service workers


Strategies and Resources for Technician Training

Providing training also is a proven strategy for engaging and motivating technical staff


Fast Track: China Builds Hospital in Five Days

A 3,000-room hospital is under construction in Shijiazhuang


Post Comment


News & Updates • Webcast Alerts • Building Technologies

All fields are required.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.