Dbtech Blog

HIPAA Policies Regarding Breach Notifications

by Greg Park

My name is Greg Park and for those that know me you know that I write on various healthcare topics.  Today I want to focus on security.  You all may be aware of the new HIPAA policies regarding breach notifications.  This states that starting on September 23, 2009 all covered entities must provide notifications of breaches to the Department of Health And Human Services (HHS).  Breaches that affect 500 or more individuals must be report to HHS within 60 days, and are clearly visible on the HHS website.

Check out the breaches that have occurred. I found it very interesting to understand the source and scope of these breaches. 

Here is how the number of breaches breaks down:
security1 (3)

Here is how the number of patient affected breaks down:
security2 (3)

Based on this information you can make certain determinations regarding how to protect patient information, and through the next few entries of this blog I will discuss each of these and how DB Technology provides tools to mitigate these types of breaches.

Share your own ideas about RAS and Security with me at gpark@dbtech.com.

I look forward to your input.

Comments on this entry are closed.