Bloomberg BNA's Health IT Law & Industry Report brings you concise, comprehensive, and timely news and analysis of the regulatory, legal, and compliance issues surrounding our nation’s...
The percentage of hospitals that conduct data risk analyses has consistently grown over the past five years, with about 90 percent of hospitals undertaking such activities in 2012, according to a Dec. 13 survey from the Healthcare Information and Management and Systems Society.
Likewise, the number of hospitals conducting regular--defined as at least annually--data risk analyses, has grown, according to the 5th Annual HIMSS Security Survey.
More than 70 percent of hospitals participating in the 2012 survey reported performing a risk analysis at least annually, compared to 54 percent in 2008.
When HIMSS first surveyed health care organizations in 2008 about data security risk mitigation efforts, most respondents were hospitals. However, a growing number of survey participants represent physician practices.
Data risk analyses among physician practices was lower--65 percent--than among hospitals in 2012, according to the survey findings.
While hospitals and physician practices are more likely to conduct data analyses, fewer than half of respondents had tested their data breach response plan and about two-thirds had conducted audits of their IT security plans.
In both cases, hospitals were more likely than physician practices to have done the testing and audits.
The survey also found that health care organizations increasingly are giving patients electronic access to their data, but have done little over the past five years to increase their efforts to collect information in audit logs about patient access to electronic records. By contrast, most health care organizations have audit logs that collect information about clinicians and non-clinic employees who access electronic data.
Survey respondents reported, overall, having fewer medical identity theft cases involving their organizations in the past five years. In 2008, 20 percent of survey participants said they had at least one medical identity theft case, compared to 11 percent in 2012.
For the first time the survey asked about data breaches. About one-quarter of respondents said they had experienced a breach, with most involving fewer than 500 individuals. A majority of those organizations also said they notified patients about the breaches.
The survey is available at http://www.himss.org/content/files/2012_HIMSS_SecuritySurvey.pdf.
All Bloomberg BNA treatises are available on standing order, which ensures you will always receive the most current edition of the book or supplement of the title you have ordered from Bloomberg BNA’s book division. As soon as a new supplement or edition is published (usually annually) for a title you’ve previously purchased and requested to be placed on standing order, we’ll ship it to you to review for 30 days without any obligation. During this period, you can either (a) honor the invoice and receive a 5% discount (in addition to any other discounts you may qualify for) off the then-current price of the update, plus shipping and handling or (b) return the book(s), in which case, your invoice will be cancelled upon receipt of the book(s). Call us for a prepaid UPS label for your return. It’s as simple and easy as that. Most importantly, standing orders mean you will never have to worry about the timeliness of the information you’re relying on. And, you may discontinue standing orders at any time by contacting us at 1.800.960.1220 or by sending an email to email@example.com.
Put me on standing order at a 5% discount off list price of all future updates, in addition to any other discounts I may quality for. (Returnable within 30 days.)
Notify me when updates are available (No standing order will be created).
This Bloomberg BNA report is available on standing order, which ensures you will all receive the latest edition. This report is updated annually and we will send you the latest edition once it has been published. By signing up for standing order you will never have to worry about the timeliness of the information you need. And, you may discontinue standing orders at any time by contacting us at 1.800.372.1033, option 5, or by sending us an email to firstname.lastname@example.org.
Put me on standing order
Notify me when new releases are available (no standing order will be created)