GAO: Tighter HIPAA Safeguards Needed at HHS
The federal agencies operate under the Federal Acquisition Regulation (FAR), which governs federal agencies in the process of acquiring goods and services—in this case, hiring contractors who handle sensitive information.
The GAO recommends additional safeguards to FAR, including:
- Address the use of nondisclosure agreements with contractors
- Prompt notification of unauthorized disclosure or misuse of sensitive information
DHS agreed with the recommendations, the GAO said, but DOD and HHS did not respond.
HHS did not immediately answer an e-mail from HealthLeaders Media Monday.
Senator Tom Carper (D-Del.), chairman of the U.S. Senate Subcommittee on Federal Financial Management, Government Information, Federal Services and International Security, said in a statement that "there have been an unacceptably high number of data breaches that have left individuals, at times, the victim of serious financial crime or, more often, fearful that their personal information will be compromised."
- 12 Hires to Keep Your Hospital Out of Trouble
- Meaningful Use Payment Adjustments Begin
- 'Mega Boards' Could be Rural Healthcare Disruptor
- 1 in 5 Eligible Hospitals Penalized for HACs
- Ratcheting Up Patient Experience Has a Downside
- HL20: Lee Aase—Who's Behind @MayoClinic
- No Boost to NFP Hospital Bond Ratings from Medicaid Expansion
- HL20: Peter Semczuk, DDS, MPH—Taking on the Big Challenges
- Top 3 Nursing Lessons of 2014
- HL20: Sam Foote, MD—The Courage to Speak Up