Smart Training
  • Home
  • About Us
    • Meet Our Team
    • Testimonials >
      • dental testimonials
      • health care testimonials
      • construction testimonials
      • manufacturing testimonials
      • oil & gas testimonials
    • PARTNERS
    • Contact
  • Services
    • Dental Products Comparison
    • Medical Essentials
    • Manufacturing Services
    • Construction Services
    • LMS Services
  • Purchase Training
    • Dental Individual Training
    • Dental Training Packages
    • Health Care Individual Training
    • Health Care Training Package
    • Construction Compliance Training
    • Manufacturing Compliance Training
  • Blog
  • START TRAINING

Employees and HIPAA ‘Snooping’

2/5/2018

1 Comment

 
Many articles listing the Top HIPAA threats pretty much follow a similar theme:  Protect devices against theft, protect data against cybercriminals, and protect yourself against unauthorized third party disclosures by signing a Business Associate Agreement. Unfortunately these articles are way off the mark.
Picture
These recommendations should be followed, but they fail to address the top HIPAA threat – practice employees...
According to the recently published IBM X-Force Threat Intelligence Report, 71% of recorded data breaches in the healthcare industry are attributable to employee actions. Employees responsible for data breaches are divided into two categories – “malicious Insiders” (25%) and “inadvertent actors” (46%).

Although IBM´s Report focuses on the number of breaches – rather than the number of records breached – the percentage of data breaches attributed to malicious insiders appears high. However, it is not the case that a quarter of the medical profession is stealing Protected Health Information for personal gain. A closer inspection of the data reveals the “malicious insiders” category includes employees snooping on the medical records of friends, colleagues and celebrity patients.

Since this sort of ‘snooping’ constitutes an unauthorized disclosure of PHI, it is a violation of HIPAA and therefore – by the number of violations alone – is one of the top HIPAA threats.  Snooping is certainly a threat that State authorities and the Office for Civil Rights would expect a Covered Entity to address in a HIPAA risk assessment.

Adapted from HIPAA Journal, January 15, 2018
1 Comment
custom essay paper link
3/14/2018 05:43:51 pm

I was not expecting that it would come out from employees' practices. If these actions have affected the whole industry big time, it is the time to make a movement and solve the roots of the problem. I may not know all things about their system, but if we know that employees actions are starting to be alarming, don't you think it's about time we make some actions for us to solve the problem?

Reply



Leave a Reply.

    Jim Moore

    Is a Certified HIPAA Professional who has worked for Smart Training since 1998.

    Archives

    September 2019
    July 2019
    June 2019
    May 2019
    April 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017
    September 2016
    April 2016

    Categories

    All
    Dental
    Healthcare
    HIPAA
    HIPAA Series
    Infection Control
    Info-Graphic
    New Partners
    OrthoAssist
    Orthodontic Training
    OSHA Compliance
    OSHA Fines
    Workplace Safety

    RSS Feed

Picture

Industries

Dental
Health Care
Construction
Manufacturing
Oil & Gas Services

    NEWSLETTER

    Sign up for our monthly newsletter to stay current on all your compliance concerns.
Subscribe to Newsletter
© COPYRIGHT 2019. ALL RIGHTS RESERVED.
  • Home
  • About Us
    • Meet Our Team
    • Testimonials >
      • dental testimonials
      • health care testimonials
      • construction testimonials
      • manufacturing testimonials
      • oil & gas testimonials
    • PARTNERS
    • Contact
  • Services
    • Dental Products Comparison
    • Medical Essentials
    • Manufacturing Services
    • Construction Services
    • LMS Services
  • Purchase Training
    • Dental Individual Training
    • Dental Training Packages
    • Health Care Individual Training
    • Health Care Training Package
    • Construction Compliance Training
    • Manufacturing Compliance Training
  • Blog
  • START TRAINING