March 27, 2012
A recent released report shows that in 2011 there was a 97% increase (year over year) in data breaches of protected health information (PHI). The report authored by Redspin, Inc. also showed that 19 million patient’s health records were affected in this increase in breaches. Over the past few years there has been an unprecedented level of data breaches carried out by thieves and other unauthorized individuals who either stole or snooped into patient records.
The Redspin’s 2011 PHI Breach Evaluation utilized info through the U.S. Division of Health and Human Services’ (HHS) documents. They looked at HHS files for health connected information breaches in between 2009 and November 2011. The company’s evaluation showed that from the 385 breaches throughout this time around period, 39% took location through a laptop pc or some other transportable device. An additional 25% occurred on a desktop Computer or perhaps a network server. The biggest percentage was from malicious intent either to steal or to view. This was 60%.
“It tends to make logical sense that as much more protected health info is digitized, it will become structured information maintained in databases and is simpler to gain access to and transfer to some laptop or portal storage device, which in turn gets lost or stolen,” Redspin’s president and CEO Daniel Berger told InformationWeek Healthcare. “Now you are able to have 1 million patient records stolen in 1 incident instead of somebody walking out the door having a file folder of 30 patient records.”
The analysis took observe that this rise is because of the adoption of electronic health records as well as the usage of technologies like tablets and smaller laptops by the healthcare business. On leading of this improve in mobile phone usage, healthcare IT departments haven’t been in a position to produce policies to stop information breaches.
“The proliferation of transportable devices and media inside all IT environments that shop PHI improve the probability of breach geometrically. Couple of healthcare workers could let you know what corporate IT safety policies are in location; it’s even rarer to locate safety awareness coaching applications,” the report states. Using usb protection is helpful.
“We think strongly that if safety isn’t produced a leading priority the health safety trust model could fail. We believe it is time for an additional round of federal regulations to take issues a step additional and say that all PHI ought to be encrypted if it is on transportable devices,” Berger stated. “The significance from the adoption of electronic well being records is so vital towards the business that it is time for the regulations to become much more prescriptive.”