How to Respond When Patient Data Has Been Compromised

Published in Member Communities on July 24, 2019

date image

Every business should have a plan in place for how they will respond to a crisis. This is even more true for healthcare industries where a crisis doesn’t just mean maintaining your own reputation, but the livelihood of your patients. You need to have a plan in place should a cyber security breach occur. Discuss these tips at your next board meeting and put a plan in place for how you will go about handling a situation like this.

Act Fast

A security breach is incredibly serious. Acting slow will only cost you more financially in the end. Delayed responses open up the opportunity for more patient data being stolen and compromised. Too often, companies try to deny that they have a security issue, or justify it by saying it’s minimal. The first step is to work with a trusted security company to determine if the incident caused patient data to leave your network and how many patient records were compromised. The results of this forensic work will determine if the incident was a breach.

It’s important to note that the laws and regulations differ per state. For example, in Iowa if you have more than 500 patient records that have been stolen it is considered a breach. Acting quickly can keep it from spiraling out of control and minimize the financial impact.

Be Honest

The public can sniff out a lie and any kind of fabrication fairly easily. Be honest about the breach and you will be able to restore the public’s trust. Let them know that you are in control of the situation and will do everything in your power to make it right. You can make it right by preventing it from happening again.

Get more details about breach notification guidelines on the U.S. Department of Health & Human Services’ website.

Prevention

You should be upfront about how the breach occurred. When you are honest with this, you will be able to talk about how you will prevent the same situation from repeating itself. If the cause was employee mishandling of information, develop a plan for how you will educate employees in the future of safety protocols and how you are adopting tech systems to assist in preventing user error.

You never know how a security breach will happen to you, but you should be prepared to handle a variety of circumstances. Your business can take steps now to prevent yourself from needing to have a crisis plan. Talk to us about developing an incident response plan.


comments powered by Disqus

From Our Experts

AOPA from the Perspective of a First-Time Attendee thumbnail AOPA from the Perspective of a First-Time Attendee The AOPA National Assembly was held September 9-11, 2021 and even though COVID-19 is still a concern, show organizers were able to host a successful and safe event for the O&P profession. OPGA was excited to be back in person at the event. Embracing the Rise of Patient Centricity thumbnail Embracing the Rise of Patient Centricity Breaking news: Your patients are changing. You may notice their behaviors are becoming much more consumer-like. And with this, they are looking for healthcare experiences that match suit with their consumer experiences. Nupura Kolwalkar, Chief Product Officer from Brightree, discusses how to better provide patient-centric care. Final Analysis: COVID-19 Government Stimulus Packages thumbnail Final Analysis: COVID-19 Government Stimulus Packages Healthcare providers were presented with several economic stimulus programs to relieve some of the burdens brought on by the COVID-19 public health emergency (PHE). Mark Higley and Craig Douglas provide a synopsis of the programs as of September 2021. Seat Elevation Congressional Sign-On Letter Sent to CMS thumbnail Seat Elevation Congressional Sign-On Letter Sent to CMS Early in October, we asked for your assistance to call your representatives and ask them to sign on to the CRT Congressional letter to CMS. The letter was sent to CMS with 77 signatures on October 6, 2021. Minding the Customer Experience: In-Person, Online, and With Shipping thumbnail Minding the Customer Experience: In-Person, Online, and With Shipping Rob Baumhover discusses how to build repeat customers through customer service and customer experience. HME Woman of the Year Nominations Now Open thumbnail HME Woman of the Year Nominations Now Open Nominations for the 2021 HME Woman of the Year Award are being accepted through Oct. 22. HME Woman of the Year Nominations Now Open thumbnail HME Woman of the Year Nominations Now Open Nominations for the 2021 HME Woman of the Year Award are being accepted through Oct. 22. VGM & Associates Releases Sales and Marketing-Focused Playbook thumbnail VGM & Associates Releases Sales and Marketing-Focused Playbook VGM & Associates has released the fourth installment of their 2021 quarterly playbook series, “VGM Playbook: Optimizing Sales and Marketing in the DMEPOS Space.”