OCR breach lists passes 150-entity mark
HIPAA Weekly Advisor, September 6, 2010
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
The number of healthcare entities reporting breaches of unsecured PHI affecting 500 or more individuals has crossed the 150 mark; nearly one year after the first such breach was reported to the government under new law.
The Office for Civil Rights (OCR) breach notification website lists 153 entities as of Friday, Sept. 2. The HIPAA privacy and security rule enforcer began publishing the breaches in February of this year, per the HITECH Act, but breach reports date back to September 22, 2009.
The breach notification interim final rule requires the OCR to publish the list, which is in effect but under review by OCR before it submits a final rule to the Office of Management and Budget.
Hospitals and provider networks account for the highest number of breaches on the list, according to numbers recorded in August by Christopher Hourihan, manager of common security framework (CSF) development and operations at HITRUST, the Health Information Trust Alliance in Frisco, Texas.
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Identify potential Medicaid RAC target areas
- HIPAA Q&A: Level of encryption needed for email
- Topic: CMS, OESS post new security compliance review information, checklist
- Capturing all necessary codes for IUD insertion and removal can be challenging
- What does case-mix index mean to you?
- QA:Coding multiple initial infusions
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- What does case-mix index mean to you?
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- ED-to-inpatient transfers are flawed with safety gaps
- Searched