http://www.fiercehealthcare.com/tags/information-security-0 en http://www.fiercehealthcare.com/story/hitrust-group-releases-draft-security-standards/2008-11-12?utm_medium=rss&utm_source=rss&cmp-id=OTC-RSS-FH0 <p>We've been telling you about the new requirements for information security for all healthcare providers--that since healthcare providers are creditors, they need to have identity theft policies in place by next year. Now a group of large healthcare companies is attempting to create a set of security practices that can be standardized.&nbsp;There are advantages and disadvantages to this approach.</p> <p>For the big healthcare companies, not having to vet every member's security policies would result in a huge savings (though for the members, it could end up being a lot more security than they feel they really need).</p> <p>The standards, which were just released in draft form from the non-profit Health Information Trust Alliance LLC (HITRUST), are a collaboration from the nine large healthcare organizations that created HITRUST.&nbsp;They hope that the standards will be widely embraced, but only time will tell if smaller organizations will get on the bandwagon.</p> <p>To learn more about the new draft standards:<br />- read this <em>Wall Street Journal</em> <a href="http://online.wsj.com/article/SB122646645329820301.html?mg=com-wsj">piece</a>&nbsp;(reg. req.)</p> <p><strong>Related Articles:<br /></strong><a href="http://www.fiercehealthit.com/story/group-create-health-data-security-protection-standard/2007-12-10">Group to create health data security protection standard</a><br /><a href="http://www.fiercehealthcare.com/story/gao-reports-numerous-security-breaches/2006-09-07">GAO reports numerous security breaches</a><br /><a href="http://www.fiercehealthit.com/story/u.s.-hospitals-have-security-blind-spot-/2008-04-14">U.S. hospitals have security 'blind spot'</a></p> http://www.fiercehealthcare.com/story/hitrust-group-releases-draft-security-standards/2008-11-12#comments Healthcare Companies Identity Theft Information Security Security Policies Wed, 12 Nov 2008 09:29:58 -0500 Anne Zieger 34614 at http://www.fiercehealthcare.com http://www.fiercehealthcare.com/story/dental-hmo-leaks-personal-information-to-website/2008-03-27?utm_medium=rss&utm_source=rss&cmp-id=OTC-RSS-FH0 <p> Here we go again! As reported by the <em>Baltimore Sun</em>, a CareFirst BlueCross BlueShield dental HMO accidentally leaked personal information--including Social Security numbers--of around 75,000 patients on a public website in February, failing to inform them of the gaffe for three weeks. While the company claims none of the information has been misused, it also has offered members 12 months of free credit monitoring, and information to contact credit bureaus for fraud alert purposes. Still, this is the <a href="http://www.fiercehealthcare.com/story/also-noted-tn-medicaid-to-test-e-prescribing-program-nih-alerts-patients-of/2008-03-25">second time in two months</a> that this sort of thing has happened. What has to happen for these sorts of mistakes to cease? </p> <p> For more information:<br /> - read the <em>Baltimore Sun</em>'s <a href="http://www.baltimoresun.com/news/health/bal-te.md.dental26mar26,0,4823354.story">article</a> </p> http://www.fiercehealthcare.com/story/dental-hmo-leaks-personal-information-to-website/2008-03-27#comments BlueCross BlueShield (BCBS) Carefirst Bluecross contact Credit Information fraud Information Security personal information Personal Security Social Security Numbers Thu, 27 Mar 2008 07:59:55 -0400 22316 at http://www.fiercehealthcare.com