Obamacare Vs. Patient Data Security: Ponemon Research - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Healthcare // Security & Privacy
News
3/13/2014
09:06 AM

Obamacare Vs. Patient Data Security: Ponemon Research

Healthcare professionals worry that healthcare regulations mandating patient data exchange are luring more data thieves, says Ponemon study.

Comment  | 
Print  | 
Comments
Oldest First  |  Newest First  |  Threaded View
David F. Carr
100%
0%
David F. Carr,
User Rank: Author
3/13/2014 | 9:51:45 AM
What's the Obamacare connection?
Is the study saying that the health insurance exchanges in particular pose a cybersecurity hazard? I get that theft of a health insurance ID number is particularly valuable to the thief, but I'm not sure the insurance number is ever issued through that service. More likely that insurance numbers would be associated with patient records in a hospital or provider system that was breached.

Are there other provisions of Obamacare, besides the creation of the exchanges that encourage/require sharing of health information in some risky way? I associate most of the stuff about health insurance exchange more with the Meaningful Use program.
Alison_Diana
0%
100%
Alison_Diana,
User Rank: Author
3/13/2014 | 5:31:02 PM
Re: What's the Obamacare connection?
The study is a result of a poll so it's perception, not necessarily reality, that ACA puts patient data at risk. Some reasons: Pure and simple, more people sending health-related information to central locations, and the sheer volume of health data being exchanged by private and government agencies. Even though there were some downward shifts in breaches, there isn't much to celebrate and the industry has to do more. Healthcare security execs predict a Target-like breach for this business; with sites like Healthcare.gov, cybercriminals have one more very attractive target in their sights.
moarsauce123
50%
50%
moarsauce123,
User Rank: Ninja
3/15/2014 | 10:03:15 AM
All depends on implementation
Germany has EHRs for almost two decades and there is no known data breach so far. It all comes down to implementation and maybe not always going with the cheapest solution possible.
Alison_Diana
50%
50%
Alison_Diana,
User Rank: Author
3/17/2014 | 9:50:33 AM
Re: All depends on implementation
That's interesting, @moarsauce. For one thing, it shows just how far behind the US has been in terms of adopting technology within healtcare. For another, it demonstrates how secure these systems can be, when implemented well. One thing I wonder, though: What disclosure laws does Germany have if a healthcare provider's data is breached? Does an organization have to notify patients, partners, etc., if data's potentially been lost or stolen and what are the criteria (for example, after 500 records are affected; within 30 days...)? 
Slideshows
7 Technologies You Need to Know for Artificial Intelligence
Jessica Davis, Senior Editor, Enterprise Apps,  7/1/2019
Commentary
A Practical Guide to DevOps: It's Not that Scary
Cathleen Gagne, Managing Editor, InformationWeek,  7/5/2019
News
Data Science Salary Survey Reveals Market Shift
Jessica Davis, Senior Editor, Enterprise Apps,  6/27/2019
White Papers
Register for InformationWeek Newsletters
Video
Current Issue
A New World of IT Management in 2019
This IT Trend Report highlights how several years of developments in technology and business strategies have led to a subsequent wave of changes in the role of an IT organization, how CIOs and other IT leaders approach management, in addition to the jobs of many IT professionals up and down the org chart.
Slideshows
Flash Poll