The most common type of data breach in hospitals? Paper records, study suggests

Paper and film records mark the most common location of data breaches in hospitals, according to a study published in The American Journal of Managed Care.

For the study, the researchers analyzed statistics on data breaches reported to the HHS Office of Civil Rights from 2009 to 2016, alongside hospital characteristics from the Health Information Management Systems Society and the American Hospital Association databases. All healthcare data breaches reported to the OCR affected 500-plus patients.

Hospitals comprised roughly one-third of all healthcare breaches, according to the researchers. Paper- and film-based records, rather than electronic records, comprised 65 percent of hospital data breaches. Network servers were the least common location of breached data, although their breaches affected the greatest number of patients.

The researchers determined a hospital's health IT sophistication and biometric security capabilities were not associated with decreased incidence of data breaches.

"Hospitals should conduct routine audits to allow them to see their vulnerabilities before a breach occurs," the study authors concluded. "Additionally, information security systems should be implemented concurrently with health information technologies. Improving access control and prioritizing patient privacy will be important steps in minimizing future breaches."

More articles on cybersecurity:
HHS OCR: 10 steps hospitals must take to avoid 'cyber extortion'
VA OIG: Orlando VAMC failed to coordinate with Office of Information and Technology to secure Wi-Fi network
Survey: Americans trust healthcare industry with personal data more than government

© Copyright ASC COMMUNICATIONS 2020. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.


Featured Webinars

Featured Whitepapers