Technology
e-Newsletter
Intelligence Unit Special Reports Special Events Subscribe Sponsored Departments Follow Us

Twitter Facebook LinkedIn RSS

OCR: Data Breaches Double Since July

Dom Nicastro, for HealthLeaders Media, December 2, 2010

The number of entities reporting breaches of unsecured protected health information (PHI) affecting 500 or more individuals is close to reaching the 200 mark.

As of Tuesday, November 30, the number of entities reporting breaches to the government's HIPAA privacy and security enforcer hit 197. The number of entities—listed on the Office for Civil Rights (OCR) breach notification website--has almost doubled since July, when the number hit 107.

In the past five months, 90 new reports have surfaced, or an average of 18 per month, a higher pace than the 15-per-month the first five months after OCR launched the website.

The list is required by HITECH, the American Recovery and Reinvestment Act of 2009 privacy subpart that includes greater breach notification requirements, more public scrutiny and increased fines for HIPAA violations.

The reporting requirement is included in the interim final rule on breach notification, which became effective on September 23, 2009.

The breach affecting the most individuals is still AvMed, Inc. of Florida, whose Dec. 10, 2009, breach involving a laptop affected 1.22 million individuals.

Laptops are still the number one location of breach information on the list, accounting for 55 of the 197 reports (27.9%). Paper records (41 reports), desktop computers (32) and portable electronic devices (29) follow.

Comments are moderated. Please be patient.

1 comments on "OCR: Data Breaches Double Since July"


Shea Steinberg (12/6/2010 at 1:14 PM)
To me, this is not surprising considering the fact that technology now-a-days is so accessible, that one can literally walk away with people's information. I have found that storing health information in a <a href="http://www.practicefusion.com/pages/easy_to_use_EHR.html?utm_source=comment&utm_medium=blog&utm_campaign=PFLS ">cloud-based</a> format is more protected and secure. For example, Practice Fusion, a web-based <a href="http://www.practicefusion.com?utm_source=comment&utm_medium=blog&utm_campaign=PFLS">electronic health record</a> , has such high security that a single provider would not be able to afford such security alone and yet the product is completely free! Same with several email providers like Gmail or Ymail, offering a free and secure product in the cloud has become a safer alternative to storing information locally. -Shea Steinberg Jr. Social Media Specialist