That’s a million dollar question. No, really, it could literally cost you millions not to know. In doubt? Fresenius isn’t. It’s cost the dialysis chain a $3.5 million settlement for data breaches in 2012. The resolution agreement cites instances of unauthorized access and “impermissible disclosure.” So how do you stop it from happening?
5 Ways to Stop Employees from Unauthorized Access
The ePHI data breaches that list Unauthorized Access/Disclosure on the 2018 “Wall of Shame” tell the story. Curiosity is no reason to jeopardize privacy, nor is lack of asset inventory a valid excuse for not knowing if a lost or stolen device is encrypted. Employees can either be top notch protectors of personal health information or place it at risk daily. It’s top-down percolation, senior management to entry-level employee, that assures everyone knows how even seemingly insignificant actions of sharing a screenshot of an x-ray, violate ePHI’s privacy and security.
How do you maintain your ePHI’s integrity? Do you have a straightforward way to run internal audits on privacy and security activities? To find out how MyVCM can support your ability to protect ePHI from unauthorized access, contact Ostendio today.
The NIST Guide can help. We can also provide you with a free copy of Ostendio’s password policy, as an example. Just contact us at info@ostendio.com.
1300 17th St N
Suite 850
Arlington, VA 22209
Call Us
1-877-668-5658
Email
info@ostendio.com