The explosion of extremely portable devices such as smart phones and iPads poses new risks, Dr. Whelan said.
“How many people have patient information stored or accessible through these omnipresent devices?
Certainly, patient information that has been sent through e-mail is easily accessed through a smartphone.
Hospitals need to develop policies around encryption and support end users in encrypting the multiple devices they may use to levels that are acceptable to HHS.”
In order to better safeguard protected data concerning patints' medical records and other health-related matters covered by HIPAA, hospitals need to have enterprise-wide programs in data information management.
But hospitals need to take HIPAA compliance a step farther. Hospitals also need to help employees make certain any data-storage or transmission devices they use are HIPAA-compliant, according to Dr. Whelan.
“Hospitalists should be involved in both policy development and process implementation to assure that the benefits of electronic data storage are not lost in order to reduce the risk of HIPAA violation,” he added.
The benefits of electronic data storage should not be lost while trying to reduce risk of HIPAA violation.
Source DR. WHELAN