The long reach of litigation has grabbed onto every element of the healthcare industry, creating something of an arms race between prosecutors and hospital administrations. As technologies, such as electronic health records, keep growing and moving, new issues can be unveiled and exploited. Patient confidentiality, for example, has become significantly more complicated to protect than it was 20 years ago. That doesn’t change the fact that federal and California law allows patients to sue doctors and hospitals for failing to take reasonable measures to protect their confidential information. This means it’s more important than ever before for healthcare facilities in California and throughout the nation to implement security systems that protect their patients’ information.
● All devices in the system are efficiently networked to roll out updates comprehensively.
● They receive an outside-party network assessment at least once a year.
● Regular staff training is provided so all are able to recognize phishing scams and other social-engineered breach attempts, and they learn best practices.
● Is there a plan in place to quickly identify and remediate a breach? While documenting the efforts to protect data is important, having a plan to minimize and communicate a breach can be just as important.
- “11 Data Breaches That Stung US Consumers,” Bankrate, http://www.bankrate.com/finance/banking/us-data-breaches-2.aspx. ↩
- Jennifer Able,“Class-action suit filed against UCLA Health over patient-data security breach,” Consumer Affairs, https://www.consumeraffairs.com/news/class-action-suit-filed-against-ucla-health-over-patient-data-security-breach-072315.html ↩