By David Perret
Between 2009 and 2021, 4,419 healthcare data breaches consisting of 500 or more health records have been reported to the United States (US) Health and Human Services’ (HHS) Office. Those breaches have resulted in the loss, theft, exposure, or disclosure of over 314,000 patient records. That equates to more than 94.63% of the 2021 population of the United States. In 2021, an average of 1.95 healthcare data breaches of 500 or more records were reported each day effecting over 90% of US citizens.
Organizations that have been sued for data leakage include the Mayo Clinic in 2020 when a former employee had inappropriately accessed the information of more than 1,600 patients. While the biggest threat comes from hackers trying to illegally accessing Personal Medical Information (PMI), accidental exposure like what happened to people at Advocate Aurora who scheduled appointments using a pixelated code that also enabled logging in via Facebook and then shared data with Facebook.
Here are five tips that can help you protect your organization and the sensitive data it stores from falling into the wrong hands:
Perform Risk Assessments Regularly. This includes doing weekly scans of your structured and unstructured data files documents, X-Rays image files, receipts, etc. on a weekly basis.
Perform Vulnerability Scans & Penetration Tests by internal or external teams that specialize in cyber-security and Pen Testing.
Utilize Encryption. This includes not only when information travels from point A to B, but also when that data is at rest.
Perform Updates & Patch Your Systems. Having the most updated security definitions is paramount.
Check Your Audit Logs. Know who and what they are accessing.
iDox.ai can help mitigate risk by helping you audit your documents, X-Rays image files, receipts, etc. by checking your unstructured data for personal medical information. Once located, you could move that data to a more secure location, perform DSAR request, as well as extract that info and use it to tools to create useful reports and studies with it. If different versions of the same file exist, you can search for that specific information within you’re your unstructured data files to make sure your records are accurate.
For more information on iDox.ai’s best in class Sensitive Data Discovery and Redaction suite of tools go to www.iDox.ai for more information and evaluate it with a free trial.
If you would like to talk to a representative that can answer any questions, please fill our contact form here: idox.ai/intro/support/contact.