These two new HIPAA settlements are meant to send a strong message about enforcement and accountability. The result for one of those cases was a record-setting settlement of $5.55 million.
Under the GDPR, organizations may be subject to data protection audits at any time as well as strict penalties for non-compliance. Preparation over the next two years is key.
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced its first resolution agreement with a business associate in June.
In order to understand how to better protect healthcare data, it’s important to understand just why healthcare employees are bypassing security protocols.
Healthcare organizations are one of the most challenging data security environments to protect. With often limited IT resources, these organizations need better ways to allocate resources in order to meet these threats.
With the move towards portable devices, Sacred Heart needed to ensure the hardware, and the sensitive data stored on these devices, remained protected, regardless of the device location or user.
With the high value of healthcare data, and large stores of electronic health records, healthcare organizations face a rising tide of constantly evolving threats.
The Care Quality Commission (CQC), an independent regulator of health and social care in the UK, recently completed a review of the data security standards at the NHS begun in 2015.