Electronic Health Records

Policy & Regulation News

Texas MD Anderson Cancer Center announces data breach

By Patrick Ouellette

- The same week that Alaska DHSS agreed to pay $1.7 million to the government for an ePHI security breach, another big data breach was reported by the University of Texas MD Anderson Cancer Center.

An MD Anderson unencrypted computer containing patient and research information was stolen from a physician’s home on April 30. The Center investigated the matter and confirmed that the stolen computer contained patient information, such as names, medical record numbers, treatment and research information and some Social Security numbers.

The investigation hasn’t determined who the responsible criminal is and MD Anderson is trying to reproduce the computer’s information. However, more importantly, it started notifying affected patients who may have been affected. To ensure that credit card information remains safe, MD Anderson is offering credit monitoring services for those whose Social Security numbers were included in the data. Furthermore, it has call center support available to those affected.

MD Anderson said that it doesn’t believe the theft was due to the information on the computer, but that seems to be of little consequence at the moment. The unencrypted computer was completely vulnerable to theft and after what happened to DHSS, what type of action the government takes (if any) should be interesting. In its press release, Anderson said that it “takes this incident very seriously and is committed to protecting patient privacy.” If this is the case, it will follow up on its promise to ramp up its employee privacy training and encryption efforts.

  • MGMA: Non-physician providers raise satisfaction, ease burdens
  • Lack of CEHRT to force changes in 2015 Medicare program
  • Standardized Provider Data a Must for Health Data Exchange
  • HIE moves forward in VT with radiology exchange pilot
  • Why Timing of Stage 3 Proposed Rule Helps ICD-10 Transition
  • New ONC CHPL Site Will Enhance Health IT Product Comparison
  • MGMA: ICD-10 continues to bedevil providers during prep period
  • 1.3M Veterans Opt Into Health Data Exchange with Private Sector
  • Key changes from Stage 1 to Stage 2 Meaningful Use
  • Handful of EHR Systems Achieve 2015 ONC Health IT Certification
  • Main Characteristics of Successful EHR Vendors, Technologies
  • Electronic Health Data Exchange Eludes Small, Rural Hospitals
  • Two Texas HIEs join forces, enable inter-network exchange
  • Governance: A critical path to achieving meaningful use success
  • Major EHR Companies to Integrate New Surescripts Pharmacy Tool
  • Will managing risk consume too many healthcare resources?
  • Study shows EHR use doesn’t equal better care
  • Walgreens pharmacies complete implementation of Greenway EHR
  • Virtualization, speech recognition to grow aggressively
  • USDA Awards $8.6 Million in Telehealth Grants for Rural Health
  • Black Book Sees Rise of Private Health Information Exchanges
  • DoD insider: Joint EHR decisions “perilous” and “detrimental”
  • How Innovative EHR Use Supports Care Quality Improvements
  • FCC announces $400 million annual investment in rural telemedicine
  • Medical scribe certification may ease EHR data entry burdens
  • Using health IT, social media to build community care
  • Calculating different EHR incentive payments
  • The Sequoia Project Not New to Health IT Interoperability
  • Recapping Important HIMSS 2016 EHR Interoperability News
  • Pioneer ACO Model Brought $384 Million in Savings to Medicare
  • A personal case for utilizing health information exchange
  • HIMSS: Sustainability top of mind for RECs as funding dries up
  • EHR adoption predicted to reach 80% of family physicians in 2013
  • Epic EHR outages in force Bay Area docs on to paper records
  • EHR Replacement Trend Expands to Emergency Departments
  • HealthNet Given HIMSS Davies Award for Exemplary EHR Use
  • NIST Ties Limited EHR Usability to Patient Safety Risks
  • EHR Replacement Trend Increases Threefold in 5 Years
  • BCBS of North Dakota Loses $72.9M as Claims Amounts Rise
  • Slow EHR, health IT adoption rates may endanger CAHs
  • US Coast Guard Searching for Commercial EHR to Replace Epic
  • NCQA drafts updated guidelines for PCMHs, requests comment
  • EHR best practices: Adopting a health IT culture (Pt II)
  • AHA: We need CMS database for public health, meaningful use
  • Berkery Noyes: Health IT dwarfs entire market in 2012 transactions
  • New Jersey Healthcare Providers Suffer EHR Security Breaches
  • Black Book: Revenue cycle management investment heats up
  • Medicare vs. Medicaid EHR incentives: What’s best for your practice?
  • “Hard to see value” in ICD-10 for physicians, analytics
  • Is it “too much to hope” that EHRs will streamline care?
  • Study: HIE can reduce unnecessarily repeated tests
  • Health IT Certification Criteria Stresses Interoperability
  • AHA Calls Out Shortcomings in EHR Interoperability
  • ePHI will benefit from more policy not just more technology
  • VA to DoD: Adopt VistA for sake of seamless EHR integration
  • Finding value in meaningful use with Benefis Health System’s Lee Roath: CIO series
  • NY Health Information Exchange Awarded $2M in CDC Initiative
  • 10 MACRA Trends Likeliest to Challenge Eligible Clinicians
  • Delays in EHR Integration Ousted Epic Installation
  • ONC Sets Up ‘Proving Ground’ for Health IT Interoperability
  • Carequality, CommonWell Reach Health Data Exchange Agreement
  • How Effective HIE Use Saves Money, Improves Health Outcomes
  • UI Trustees Debate Value of $62M Epic EHR Replacement Deal
  • Health data breaches and responses
  • Sebelius: Care coordination can easily turn into a monopoly
  • Study shows significant use of health IT by nurses
  • Neurologist Joins Push to Abandon ICD-10 Implementation
  • Patient-Generated Health Data: There’s a Pill for That
  • HIE Use Reduces Repetitive Therapeutic Medical Procedures
  • Does cloud-based EHR increase health data security?
  • Does physician EHR use depend on perceptions of uncertainty?
  • Should HIE vendors follow HIPAA rules?
  • Group Seeks 90-day Meaningful Use Reporting Period in 2016
  • How Private Industry is Embracing Healthcare Data Standards
  • Blue Button Aids in Health Data Exchange with Patients
  • You may have been misinformed about Stage 2
  • How are EHRs to be made part of the healthcare dialogue?
  • HIM pros must sink or swim in new era of EHRs, AHIMA says
  • Allscripts CEO Tullman Resigns, Black Named Replacement
  • How to satisfy patient engagement in Stage 2 Meaningful Use
  • OpenNotes to Reach 50M New Patients Through Grant Funding
  • Surescripts saw 32% growth in e-prescriptions in 2013
  • Methods for Improving Patient Access to Health Information
  • Healthcare Execs Will Invest More in EHR Systems, Health IT
  • Veterans Affairs: We want the DOD to pick us for its new EHR
  • Dec. 31: Meaningful use reporting deadline for EPs
  • Physicians to Launch Connecticut Health Information Exchange
  • Should docs stop taking insurance to save time, EHR expense?
  • Meaningful Use Hardship Exception for 2015 Signed into Law
  • Benefits of VDI Implementation to Physician Productivity
  • Can CME delivered through EHRs improve patient outcomes?
  • Is Physician Dissatisfaction with EHR Use on the Rise?
  • Study Aims to Aid Patient EHR Documentation Understanding
  • Hospital Leaders Unsure of Health IT Growth, Long Term Strategy
  • EHR Use, Care Coordination Key to Integrated Primary Care
  • E-Prescribing to Benefit from Electronic Transactions Changes
  • Physician series: OB/GYN EHR hurdles
  • Rural Health Providers Form New Accountable Care Organizations
  • Population Health Management Tools Unveiled at HIMSS15
  • How Does ONC Plan to Expand Health Information Exchange?
  • Browse the latest EHR, MeaningfulUse and ICD-10 White Papers and Guides 

    Related links:

    ePHI will benefit from more policy not just more technology

    UT law professor examines Utah health data breach

    Data security is everything in EHR selection and Implementation

    More on the South Shore Hospital health data breach

    Stiffer encryption means better protection for PHI or EHR

    Continue to site...