Cost of HIPAA breaches nears $1 billion
HIPAA Weekly Advisor, August 16, 2010
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Covered entities and business associates (BAs) reporting breaches of unsecured personal health information (PHI) affecting 500 or more individuals to the Office for Civil Rights (OCR) together could spend nearly $1 billion because of those breaches.
According to an August 2010 report from the Health Information Trust Alliance (HITRUST), the 108 entities that have submitted breach reports to OCR since September 23, 2009 and through the time of the HITRUST report could combine to spend $834.3 million in total costs to address violations of HIPAA.
HITRUST used the 2009 Ponemon Institute study that found the average cost for each compromised record is approximately $144 in indirect costs and $60 of direct costs, for a total cost of $204.
OCR’s breach notification website list has grown since the HITRUST report was published this month. As of August 13, 130 entities have reported breaches of 500 or more.
Read the full story on HIPAA Update.
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Identify potential Medicaid RAC target areas
- HIPAA Q&A: Level of encryption needed for email
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- QA:Coding multiple initial infusions
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- What does case-mix index mean to you?
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched