Exclusive to THCB: A couple weeks ago I pointed to a new study, commissioned by Kroll Fraud Solutions and conducted by HIMSS Analytics, that makes startlingly clear the gap between what most health systems are doing to comply with HIPAA, and what they need to do to actually safeguard the patient data in their possession.Tomorrow, Wednesday, April 23rd at 2PM EST, and again next Tuesday, April 29th at 2PM, EST, you’re invited to a 40 minute Webcast, moderated by Yours Truly, that goes through the issues. Jennifer Horowitz, the investigator from HIMSS Analytics, Lisa Gallagher, HIMSS Senior Director of Privacy and Security and Brian Lapidus, Kroll’s COO, will talk about how health care executives typically perceive the issue and how they report their own awareness and preparedness, in stark contrast to the threat and what happens when a breach actually occurs. I was a bystander in this energetic discussion, but it was an eye-opener for me.
If you’re at all involved in managing health system security or if you’re simply interested in the deeper realities of what’s necessary to protect patient data, this one’s a must. Join us for this revealing and important Webinar. Click here to get the study report and to register.
EXCLUSIVE TO THCB: HIMSS Analytics, the research arm of the powerful, thoughtful and highly regarded Health Information Management Systems Society, has published a sobering study, Security of Patient Data – see here – that highlights the gap between hospital patient data security practices and the reality of impacts if a breach occurs. The report, commissioned by Kroll Fraud Solutions, should be a splash of cold water to health care executives in all settings with responsibility for patient data. A link to the Executive Summary has been placed at the bottom of this post.
In the wake of several recent incidents involving breaches of celebrity records, what’s fascinating about the study is that the executives interviewed claimed a very high familiarity with HIPAA rules; they averaged 6.53 (on a 7 point scale) and 75 percent of those interviewed gave themselves a 7. The report attributes the high sense of HIPAA knowledge with the current rounds of HIPAA compliance audits and the penalties for non-compliance that have resulted in some cases.
Though it probably went mostly unnoticed in the cacophony of health care stories, last week’s news that Walgreen’s had bought the two largest and most well-established worksite clinic firms, iTrax and Whole Health Management, was a harbinger of very big changes in health care. Walgreens, the ubiquitous drugstore company that, with Wal-Mart and CVS, has already leveraged its pharmacy platform to establish a strong footprint in retail clinics, undoubtedly startled many health care observers with its announcement. After all, isn’t the company doctor a relic?
Actually, no. The worksite clinic – and by way of disclosure for the better part of the last year I have
worked closely with a small, very innovative, Orlando-based startup worksite clinic
firm, WeCare TLC – has been
reinvented and refitted with 21st century tools, and offers the promise
of nothing less than a paradigm shift toward dramatically better care
at significantly lower cost. Understanding how these structures work and how they differ from both old-fashioned medical practices and retail clinics provides clues into what Walgreens likely sees and why that matters to American health care.