NOV 19, 2009 4:15pm ET

Related Links

HIT Vendor Round-up: Castlight, MedAssets & Aprima
January 31, 2012
Aetna Wants Dentists to Push Smoking Cessation via iPads
January 31, 2012
Laptop Loaded with PHI Stolen from Lexington Clinic
January 31, 2012
Consultant Describes Rocky Road Through the Health System
January 27, 2012
ONC Seeks Easy EHR Accessibility, Discharge Apps
January 26, 2012
Mostashari: 2012 Will be a Big Year for HIT
January 26, 2012
Sorting the Reform Law Options Before the Supreme Court
January 25, 2012

Web Seminars

The Evolution of Tablet Computing in Healthcare
Available On Demand
Which comes first? Chargemaster Standardization vs. System Conversion
Available On Demand
Chronic Care. Chronic I.T. Challenges
Available On Demand

Insurer Breach Affects Four States

Print
Reprints
Email

Insurer Health Net is reporting to insurance officials in four states the disappearance of a hard drive with protected health information of 1.5 million covered members. The reporting comes six months after the Los Angeles-based insurer learned the hard drive was missing.

The data breach affects individuals in Arizona, Connecticut, New Jersey and New York. Data on the hard drive includes identifiable medical records and Social Security numbers. Health Net plans to notify affected individuals.

Some 446,000 of those individuals live in Connecticut, where the state attorney general and insurance commissioner are investigating, according to the Hartford Courant. Insurance Commissioner Thomas Sullivan on Nov. 18 sent a letter to Health Net requesting information covering eight areas, including the long delay in reporting the breach. Sullivan is requiring that Health Net provide adequate credit monitoring protection through a specific company to affected individuals in Connecticut for two years.

According to Health Net, data on the hard drive was not encrypted, but is invisible without the use of specific software. The company told the Hartford Courant a lengthy investigation that involved a forensic review to determine what information was on the hard drive accounted for the delay in reporting the breach.

New federal rules mandated under the American Recovery and Reinvestment Act requiring "timely" notification of certain breaches of health information now are effective with a compliance deadline of Feb. 22, 2010.

--Joseph Goedert

Consumer Health

Comments (0)

Be the first to comment on this post using the section below.

Add Your Comments:
You must be registered to post a comment.
Not Registered?
You must be registered to post a comment. Click here to register.
Already registered? Log in here
Please note you must now log in with your email address and password.
Most Read
Most Emailed

Slide Shows

Health Information Exchange: Getting Real
Twitter
Facebook
LinkedIn

Current Issue

Building Connections on the Care Continuum

A major success factor for accountable care organizations will be linking caregivers across the spectrum of care delivery. If history is any indication, that's going to be an industrywide struggle.

Videos

HdmTV from HIMSS 2011: Claire McCarthy, director of operational effectiveness at Kaiser Permanente

Policy & Regulation

EHR

Health Info Exchange

Revenue Cycle & Payments

Chronic Care

Mobile Technology

Web Seminars

White Papers

Login  |  My Account  |  White Papers  |  Web Seminars  |  Events |  Newsletters |  eBooks
FOLLOW US
Already a subscriber? Log in here
Please note you must now log in with your email address and password.