Monday, March 18, 2013

Insider Breaches Patient Data at Six Medical Practices

An employee of a medical practice improperly accessed the electronic medical records (EMRs) and patient registration information of patients at six medical practices in Melrose, Massachusetts.

A report of the breach was made to the New Hampshire Attorney General's office. The notification to the state did not include a copy of their notification letter to patients, so the full scope of information the employee accessed or why is unknown.

"...an employee of a medical practice improperly accessed the EMRs and patient registration information of patients at six medical practices...."
- PHIprivacy.net
"In response to the breach, the EMR firm says it is enhancing its privacy and security controls, consulting with professionals about implementing better access control monitoring, and re-training all employees. Affected patients are being offered credit protection and restoration services."

The letter does not indicate whether the employee has been referred to law enforcement for criminal charges."

Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.
Sources:
(a) Massachusetts EMR Firm Reports Breach - PHIprivacy.net, 03/16/2013

No comments:

Popular Posts

Copyright © 2010-2017 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.