Tech Preps Healthcare Organizations For Lawsuits - InformationWeek
Healthcare // Policy & Regulation
09:06 AM

Tech Preps Healthcare Organizations For Lawsuits

Healthcare organizations spend and worry more about litigation and regulations than their counterparts in many other industries, study finds. Specialized software helps.

firms said they encountered issues with privacy or protection during a dispute or investigation in 2013.

In 2013, for example, pharmaceutical companies battled generic drug makers in the Supreme Court, and the DoJ filed suit against Novartis Pharmaceuticals. More than 7 million patient records were breached in 2013 alone, according to Redspin, leading to HIPAA breaches and subsequent investigations and penalties. When the federal government gets large settlements or continued monitoring agreements, its coffers swell, said Yvonne Puig, US Head of Life Sciences and Healthcare at Norton Rose Fulbright, in an interview.

"This has led to lots of money coming into enforcement at both the federal and state level. With increased enforcement, a general counsel will decide to hire outside counsel, such as ours, and use inside counsel to look at internal compliance programs," she said. "They read about internal enforcement and want to get on top of the trend. As a result, you see a spike in enforcement."

To handle this increased volume, 47% of healthcare organizations surveyed employ more than five full-time lawyers. Despite this, 60% used external counsel to complement their internal resources or -- in 19% of cases -- to conduct six or more internal investigations, according to Norton Rose Fulbright.

Technology is both blessing and curse for healthcare providers.

"We see our life sciences and healthcare clients in particular looking at the special challenges of storage with cloud computing," Puig told us. "As a healthcare company looking for places for storage it is extremely important to consult your in-house and external counsel to ensure compliance. Social media has created special and unique regulatory and compliance and litigation concerns."

That does not mean, however, that healthcare clients should shun cloud and social media. Rather, they should appropriately measure and manage risk, said Puiz.

"If you have to go to a place that has no risk, you can't be competitive. You can't stand still. We must keep pace and be ahead of the technologies that serve our industry."

The first step in addressing a regulatory or legal issue is organization, said CynergisTek's McMillan. That means ensuring that software tracks users' electronic footprints, scrutinizing cloud providers' service-level agreements, and making sure an organization adheres to security and storage best-practices, he said. Adding software that makes it easy to find the information that attorneys -- or subpoenas -- require speeds up the process, which often benefits the healthcare organization, McMillan noted.

"Half of beating a lawsuit or ending up with a better result is being prepared for the allegations or being able to refute them," said McMillan. "Most organizations can't respond or they don't respond to the right thing or in an effective manner. Then the lawyers have a field day."

Download Healthcare IT In The Obamacare Era, the InformationWeek Healthcare digital issue on changes driven by regulation. Modern technology created the opportunity to restructure the healthcare industry around accountable care organizations, but ACOs also put new demands on IT.

Alison Diana has written about technology and business for more than 20 years. She was editor, contributors, at Internet Evolution; editor-in-chief of 21st Century IT; and managing editor, sections, at CRN. She has also written for eWeek, Baseline Magazine, Redmond Channel ... View Full Bio

2 of 2
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Author
5/1/2014 | 9:47:21 AM
""The hospital had a policy you couldn't look at your own record,'" That always amazes me. Shouldn't a patient have the right to see his/her own record?
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of the Cloud Report
As the use of public cloud becomes a given, IT leaders must navigate the transition and advocate for management tools or architectures that allow them to realize the benefits they seek. Download this report to explore the issues and how to best leverage the cloud moving forward.
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on for the week of November 6, 2016. We'll be talking with the editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll