Make Sure You're Cybersecure > Michigan State Medical Society

News

Make Sure You're Cybersecure

Cybercrime costs the U.S. economy billions of dollars each year and causes organizations to devote substantial time and resources to keeping their information secure.

It's especially important for health care organizations, the most frequently attacked form of business. Cybercriminals target health care for two main reasons: health care organizations fail to upgrade their cybersecurity as quickly as other businesses, and criminals find personal patient information particularly valuable to exploit.

The repercussions of security breaches can be daunting. A business that suffers a breach of more than 500 records of unencrypted personal health information (PHI) must report the breach to the U.S. Department of Health and Human Services' Office for Civil Rights (OCR). This is the federal body with the power to enforce the Health Insurance Portability and Accountability Act (HIPAA) and issue fines. To date, the OCR has levied more than $25 million in fines, with the largest single fine totaling $4.8 million. A health care organization's brand and reputation also are at stake. The OCR maintains a searchable database (informally known as a "wall of shame") that publicly lists all entities that were fined for breaches that meet the 500-record requirement.

If you think you may not be fully compliant with HIPAA privacy and security rules, click here to learn more through an infographic created by The Doctors Company. For more patient safety articles and practice tips, visit www.thedoctors.com/patientsafety.

 

Posted in: Hot Topics, News for Practices

Connect