JUN 2, 2010 5:23pm ET

Related Links

Security-Savvy Execs Share Their Secrets
May 22, 2012
Small Breach includes Social Security Numbers
May 21, 2012
Utah I.T. Director Resigns Following Breach
May 17, 2012
HIT Policy Committee Seeks Consumer Advocate
May 14, 2012
ONC Seeks Input on NwHIN Governance
May 11, 2012
New Privacy/Security Guidance from ONC
May 8, 2012
Report Posits that Decentralized Data Analysis Increases Privacy Safeguards
May 7, 2012

Web Seminars

Visual Business Intelligence for Healthcare
Available On Demand
The Evolution of Tablet Computing in Healthcare
Available On Demand
Which comes first? Chargemaster Standardization vs. System Conversion
Available On Demand

Sometimes, Encryption Isn't Enough

Print
Reprints
Email

A recent news bulletin in Health Data Management noted that Rainbow Hospice and Palliative Care in Park Ridge, Ill., had an encrypted laptop stolen but still publicly reported the breach to affected patients, local media and the Department of Health and Human Services Office for Civil Rights.

Breached data that is encrypted need not be reported under the breach notification rule, but here's why Rainbow Hospice had to issue notifications:

The laptop's hard drive, with protected clinical and financial information on 999 patients, was encrypted, says a spokesperson. Two passwords are needed to use the computer, with one of the passwords decrypting data to make the database accessible. So, encryption is turned off when the laptop is in use, and turns back on when the laptop is closed or shut down.

A nurse was visiting a home that had a "chaotic environment," with the laptop turned on and open when it was stolen. But if the laptop had been turned off when stolen, the data would have been encrypted behind two passwords and notification would not have been necessary.

--Joseph Goedert

 

Data Security
EHR
Hardware
Mobile Technology
Policy & Regulation
Stimulus
Hospitals
Group Practices

Comments (0)

Be the first to comment on this post using the section below.

Add Your Comments:
You must be registered to post a comment.
Not Registered?
You must be registered to post a comment. Click here to register.
Already registered? Log in here
Please note you must now log in with your email address and password.
Most Read
Most Emailed

Slide Shows

The Changing Landscape for Health Care Payments
Twitter
Facebook
LinkedIn

Current Issue

The Price of I.T. Progress?

Looking to build better care coordination, health systems are buying physician groups in droves. Making the deal work, however, requires careful management on the I.T. front.

Videos

IBM's Watson in Health Care

Policy & Regulation

EHR

Health Info Exchange

Revenue Cycle & Payments

Chronic Care

Mobile Technology

Web Seminars

White Papers

Login  |  My Account  |  White Papers  |  Web Seminars  |  Events |  Newsletters |  eBooks
FOLLOW US
Already a subscriber? Log in here
Please note you must now log in with your email address and password.