Patient Data Security Beyond Privacy Regulations
6 Things to Know about Patient Data Security
You’re probably aware of the risks of cyberattacks and identity theft. What you may not know is that patients’ medical records — even more than Social Security numbers and credit card information — are a primary target of these attacks. Here’s what you may not know about risks to your patients’ — and your practice’s — data.
- When a patient has tests, such as an X-ray or another scan, and has results burned onto a CD, this disc may have autorun files (files that automatically run upon disk insertion) that make the information on it more vulnerable to attack.
- Nearly 90% — yes, you read that right — of healthcare organizations suffer from data breaches, according to a Ponemon Institute study. The vast majority of those are the result of criminal attacks aimed at getting patients’ medical information to use to fraudulently purchase equipment or medication, which can later be resold.
- The medical community is not fully aware of the extent of the threat: The Ponemon study noted that 62% of respondents say they are not aware or are unsure of any medical identity theft affecting their patients.
- Healthcare organizations think employee training can prevent most identity theft.
- A lack of spending on cybersecurity may be making hospitals and other healthcare institutions more vulnerable to these types of attacks.
- The risks of cyberattacks on patient data aren’t only financial. Having compromised computer data may also affect patients’ dosage, lab results and treatment information.
As with most threats, the first step in preparing yourself is to be aware that you could be a target. To learn more about cybersecurity, read “Top 10 Tips for Cybersecurity” at healthit.gov.
Get More Solutions for Healthcare, Dental & Veterinary Professionals
Start Your Cash Flow Conversation
Give us a call at 1-855-762-2365 or fill out our simple form and a PNC Business Banking representative will get in touch with you.
Request a Contact »
Important Legal Disclosures and Information
Reuters, 2014 [reuters.com/article/us-cybersecurity-hospitals-idUSKCN0HJ21I20140924]
Princeton University Center for Information Technology Policy, 2012 [freedom-to-tinker.com/2012/05/14/going-to-the-doctor-and-worrying-about-cybersecurity]
Ponemon Institute, 2016 [ponemon.org/blog/sixth-annual-benchmark-study-on-privacy-security-of-healthcare-data]
ID Experts and Ponemon Institute, 2016 [www2.idexpertscorp.com/sixth-annual-ponemon-benchmark-study-on-privacy-security-of-healthcare-data-incidents]
The third-party trademarks referenced in these articles are owned by and are the registered trademarks of their respective third-party owners. There is no affiliation, sponsorship or endorsement relationship between PNC or its affiliates and any such third party.
PNC is a registered mark of The PNC Financial Services Group, Inc. (‘‘PNC’’)
Business Insights for Dental Professionals/Business Insights for Healthcare Professionals is prepared for general information purposes by Manifest, LLC and is not intended as legal, tax or accounting advice or as recommendations to engage in any specific transaction, including with respect to any securities of PNC, and do not purport to be comprehensive. Under no circumstances should any information contained in the presentation, the webinar or the materials presented be used or considered as an offer or a commitment, or a solicitation of an offer or a commitment, to participate in any particular transaction or strategy, nor should it be considered legal advice. Any reliance upon any such information is solely and exclusively at your own risk. Please consult your own counsel, accountant or other advisor regarding your specific situation.
Neither PNC Bank nor any other subsidiary of The PNC Financial Services Group, Inc. will be responsible for any consequences of reliance upon any opinion or statement contained here, or any omission. The opinions expressed in these materials or videos are not necessarily the opinions of PNC Bank or any of its affiliates, directors, officers or employees. Banking and lending products and services, bank deposit products, and Treasury Management products and services for healthcare providers and payers are provided by PNC Bank, National Association, a wholly owned subsidiary of PNC and Member FDIC.
Lending and leasing products and services, including card services and merchant services, as well as certain other banking products and services, may require credit approval.