How to Respond When Patient Data Has Been Compromised

Published in Member Communities on July 24, 2019

date image

Every business should have a plan in place for how they will respond to a crisis. This is even more true for healthcare industries where a crisis doesn’t just mean maintaining your own reputation, but the livelihood of your patients. You need to have a plan in place should a cyber security breach occur. Discuss these tips at your next board meeting and put a plan in place for how you will go about handling a situation like this.

Act Fast

A security breach is incredibly serious. Acting slow will only cost you more financially in the end. Delayed responses open up the opportunity for more patient data being stolen and compromised. Too often, companies try to deny that they have a security issue, or justify it by saying it’s minimal. The first step is to work with a trusted security company to determine if the incident caused patient data to leave your network and how many patient records were compromised. The results of this forensic work will determine if the incident was a breach.

It’s important to note that the laws and regulations differ per state. For example, in Iowa if you have more than 500 patient records that have been stolen it is considered a breach. Acting quickly can keep it from spiraling out of control and minimize the financial impact.

Be Honest

The public can sniff out a lie and any kind of fabrication fairly easily. Be honest about the breach and you will be able to restore the public’s trust. Let them know that you are in control of the situation and will do everything in your power to make it right. You can make it right by preventing it from happening again.

Get more details about breach notification guidelines on the U.S. Department of Health & Human Services’ website.

Prevention

You should be upfront about how the breach occurred. When you are honest with this, you will be able to talk about how you will prevent the same situation from repeating itself. If the cause was employee mishandling of information, develop a plan for how you will educate employees in the future of safety protocols and how you are adopting tech systems to assist in preventing user error.

You never know how a security breach will happen to you, but you should be prepared to handle a variety of circumstances. Your business can take steps now to prevent yourself from needing to have a crisis plan. Talk to us about developing an incident response plan.


comments powered by Disqus

From Our Experts

VGM Wound Care and Permobil Discuss the Importance of Seated Posture thumbnail VGM Wound Care and Permobil Discuss the Importance of Seated Posture In this episode of industry matters Director of Wound Care, Heather Trumm, talks with Stacey Mullis, Director of Clinical Marketing at Permobil, where “Every person has the right to have his or her disability compensated as far as possible by aids with the same technical standard as those we all use in our daily lives.” Heather and Stacy are going to dive right into dive into something that is often overlooked, and that is seated posture in wound care. Key Marketing Priorities for HME Providers in 2021 thumbnail Key Marketing Priorities for HME Providers in 2021 Now that 2020 is officially in the rearview mirror, it's time to get strategic in 2021 with resources, priorities, and investments. From a marketing perspective, healthcare delivery models have undoubtedly changed. Lindy Tentinger discusses key marketing priorities that can help your company achieve its business goals and set it up for continued success. CRT Telehealth Update from NCART thumbnail CRT Telehealth Update from NCART NCART and the CRT Remote Services Consortium announced their continued efforts to secure a permanent telehealth option for people with disabilities who require complex rehab technology (CRT). Navigating Lead Generation Safely thumbnail Navigating Lead Generation Safely Lead-generating companies are prevalent in the industry and are legal, but it is essential that providers understand exactly what service they will provide and how they will do it. Member Spotlight: Leo Levine, Owner, Merrick Surgical Supplies & Home Care thumbnail Member Spotlight: Leo Levine, Owner, Merrick Surgical Supplies & Home Care Meet Leo Levine, owner of Merrick Surgical Supplies & Home Care! A VGM member since 2019, Leo has taken what he's learned during his time as a member and used it to help him grow his business. Is Medicare Advantage Too Good to be True? thumbnail Is Medicare Advantage Too Good to be True? In a recent HME News article, Dan Fedor provides three important items for CRT providers to know about Medicare Advantage plans. What Healthcare at Home Means for DMEPOS thumbnail What Healthcare at Home Means for DMEPOS This year has been one of the most taxing years in history for everyone. We have all been keeping safe at home, which has caused the need for DMEPOS to be even more critical. As we close out the year, it's good to reflect really what does healthcare at home mean for our industry? An Inside Look with Clint, Episode 3: Mark Higley and the Importance of Benchmarking thumbnail An Inside Look with Clint, Episode 3: Mark Higley and the Importance of Benchmarking Clint talks with Mark Higley about the importance of benchmarking. Each year VGM partners with HME News to provide and then analyze an industry benchmark survey.