Health Information Management

Cascade official shares lessons learned from CMS HIPAA security audit

HIM-HIPAA Insider, April 27, 2010

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

Ten covered entities (CE) found themselves in CMS’ crosshairs when the federal government conducted on-site audits to verify compliance with the HIPAA security rule. 

Cascade Healthcare Community, a three-hospital health system headquartered in Bend, OR, was one of those CEs that found itself under the microscope.
 
Unfortunately for Cascade, a virus invaded part of its computer system in December 2007, exposing the data of more than 11,500 donors and landing the healthcare system in the headlines.
 
In July 2008, CMS notified the healthcare system and Judi Hofman, CAP, CHP, CHSS, its privacy and information security officer, that the incident had triggered a HIPAA security audit.
 
Note: To read more, visit the HCPro Web site. Subscribers to Briefings on HIPAAhave access to this article in the April issue of their newsletters.



Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

Most Popular