One of the most cumbersome and expensive compliance issues for American medical practices over the last few years has been the Health Insurance Portability and Accountability Act (HIPAA). Implementation of this law has been taking place since 2003, and it seems to become increasingly complex as time goes by.
Meeting HIPAA Requirements for Data Security
Before the end of 2015, the OCR was tasked with making sure that the HIPAA privacy and security guidelines were being observed by covered entities across the nation. When OCR received orders to increase oversight and enforcement actions, there were concerns about research studies showing high vulnerability to data breaches, invasions of privacy, and data theft.
Just a few months before the OCR started to audit networks at several medical and dental practices, the Ponemon Institute, a think tank dedicated to information security (infosec) policy, revealed the troubling results of a five-year study of data protection at American healthcare facilities. It so happened that at least one criminal data breaches had been reported by 91 percent of HIPAA covered entities; 39 percent reported two or more attacks within the five years of the study.
HIPAA Compliance in Victorville Businesses
Medical practices in Victorville and across the High Desert should think beyond compliance with regard to HIPAA. The likelihood of a cyber attack on clinics, hospitals, laboratories, and even small doctors’ offices is very high. Patient data is very attractive to malicious hackers because it presents a treasure trove of information that they can use for identity theft purposes. It’s not just names, addresses and social security numbers that are at risk; there’s also insurance data and next-of-kin information.