Early efforts to tighten medical data security

Posted by Caitlin on July 13th, 2009

Thanks for visiting the NextAdvisor Daily blog. You may want to subscribe to our RSS feed.

A state law requiring California health care organizations to report suspected medical data breaches went into effect this past January. Since then, California officials have received more than 800 data breach reports. The California Department of Public Health expects to receive fewer reports once health organizations become more familiar with the reporting procedures. So far, 116 have been confirmed as actual breaches, most of which were unintentional. Offending organizations or individuals can be fined up to $250,000 per breach, depending on the nature of the breach and the extent of the harm caused. Kaiser Permanente Bellflower Medical Center in Los Angeles, for example, was fined the full $250,000 after hospital workers peeked at "Octomom" Nadya Suleman's medical records. California has been on the forefront of data breach notification laws. This medical breach notification law is the first in the nation, but health care providers have complained that it is too rigid.

Medical data security is still in its early stages, which makes medical identity theft even more difficult to prevent than other forms of identity theft. TrustedID is one identity theft protection service that does offer medical record protection. To learn more about TrustedID or other identity theft protection services, see our reviews and comparison chart.

• Data Breach Alert: Seven years of government medical data exposed
• Is your state putting your identity at risk?
• California identity theft protection guide: facts, trends and resources
• 25 million identities left unprotected in the UK
• Data Breach Alert: Health insurer exposes personal information of 128,000 customers