Electronic Health Records

Policy & Regulation News

Texas MD Anderson Cancer Center announces data breach

By Patrick Ouellette

- The same week that Alaska DHSS agreed to pay $1.7 million to the government for an ePHI security breach, another big data breach was reported by the University of Texas MD Anderson Cancer Center.

An MD Anderson unencrypted computer containing patient and research information was stolen from a physician’s home on April 30. The Center investigated the matter and confirmed that the stolen computer contained patient information, such as names, medical record numbers, treatment and research information and some Social Security numbers.

The investigation hasn’t determined who the responsible criminal is and MD Anderson is trying to reproduce the computer’s information. However, more importantly, it started notifying affected patients who may have been affected. To ensure that credit card information remains safe, MD Anderson is offering credit monitoring services for those whose Social Security numbers were included in the data. Furthermore, it has call center support available to those affected.

MD Anderson said that it doesn’t believe the theft was due to the information on the computer, but that seems to be of little consequence at the moment. The unencrypted computer was completely vulnerable to theft and after what happened to DHSS, what type of action the government takes (if any) should be interesting. In its press release, Anderson said that it “takes this incident very seriously and is committed to protecting patient privacy.” If this is the case, it will follow up on its promise to ramp up its employee privacy training and encryption efforts.

  • HIMSS rebuts proposed suspension of EHR incentives
  • EHR Technology Patent Lawsuit Deemed Abstract, Ineligible
  • Why providers must engage third-party payers for ICD-10
  • Aligning complementary programs is also important
  • ONC Should Decertify Products that Block EHR Interoperability
  • HHS Called on to Eliminate Health Information Blocking
  • Meaningful Use Public Health Objectives Deadline on March 1
  • 78% of physicians copy and paste significant portions of progress notes
  • HIMSS asks for more telehealth, fewer health IT disruptions
  • Key Takeaways of Clinical Decision Support System Feedback
  • How the Cloud Targets Meaningful Use Requirements
  • Kansas HIE now state’s responsibility
  • Medical scribes boost EHR productivity, streamline workflow
  • EHR notes, data analytics help track off-label drug use
  • Most Vendors Bridged EHR Integration for 2014 Attestations
  • AMA Leads Call for Addressing EHR Quality Reporting Programs
  • Summarizing New Streamlined Clinical Quality Measures at CMS
  • AHIMA 2012: EHR and the physician experience
  • Will and how will interoperability be achieved this year?
  • Thousands lose telemedicine access as Medicare redraws map
  • Healthcare Claims Data for Sale Under New CMS Regulation
  • Surescripts adds 12 Epic health systems to clinical network
  • EHR adoption, patient privacy causing buzz on Capitol Hill
  • Data security is everything in EHR selection and Implementation
  • Calculating different EHR incentive payments
  • CMS begins restructuring of Quality Improvement Program
  • Certified EHR Use Central to New Advanced Primary Care Model
  • MIT sets sights on open-source mHealth during innovation event
  • MA Gives Details on EHR Proficiency Requirement for Licensure
  • Why Is EHR Interoperability a Starting Point at Cerner?
  • Standards Impacting Direct Exchange, Interoperability
  • PA to create drug database to reduce doctor shopping, ODs
  • Should physicians use the ICD-10 delay to learn how to code?
  • Why health information exchanges need hospitals to adopt?
  • Health literacy level affects patients’ decision to use PHR technology
  • Experienced EHR consultants still needed
  • Slavitt: CMS Already Mulling Changes to MACRA Start Date
  • Why Interoperability Is Necessary for Health IT Innovation
  • SNOMED and LOINC team up ahead of ICD-10
  • Greenway Top EHR Vendor for Primary Care EHR Satisfaction
  • Healthcare, medicine should take a lesson from the Olympics
  • EHR best practices: Adopting a health IT culture (Pt II)
  • Utah hospital system first to publish physician reviews online
  • Black Book: 81% of practices committed to EHR replacement
  • SAFR Guidance to Aid EMS Providers in Health Data Exchange
  • Technical Barriers Limiting Health Information Exchange
  • Future of EHR innovation is integration of health IT
  • ePrescribing Expected and Preferred in 82% of Older Patients
  • Methods for Improving Patient Access to Health Information
  • AHRQ Eyes Clinical Decision Support to Share PCOR Findings
  • ONC Reveals 5 Year Health IT Certification Improvement Plan
  • Hoping for ICD-11 is “Waiting for Godot,” ICD-10 Coalition Says
  • How EHR Cloud-based Solutions Support Provider Independence
  • Healthcare Organizations Call for Value-based Care Policy
  • What activities need to come after an EHR implementation?
  • EHR contract guide will help docs keep data after replacement
  • ‘Action First’ Vital in Health Information Exchange
  • Why Optimism Is Building for National Patient Identifier
  • Is the Triple Aim of Healthcare Achievable Through EHRs?
  • How Can Providers Prepare for the ICD-10 Transition Deadline?
  • DirectTrust Backs ONC Focus on EHR Usability, Interoperability
  • Arkansas Legislature Considers Health IT Legislation
  • Governance: A critical path to achieving meaningful use success
  • Providers Still Facing Health Information Exchange Barriers
  • ONC, ANSI name 5 permanent certification bodies
  • ONC Chief Talks Health IT Standards, Information Sharing
  • Subtle EHR alert increases pediatric flu vaccine by 9%
  • Five reasons you might actually like ICD-10
  • Kentucky rural healthcare provider uses cloud-based EHR
  • How Strong Health Data Governance Ensures EHR Data Integrity
  • Stage 2 Meaningful Use Checklist
  • Mass. eHealth Institute opens grants for HIE, interoperability
  • HHS Programs to Support Data Standards, Interoperability
  • Senate Committee Eyes Changes to Meaningful Use Requirements
  • Seema Verma Confirmed to Serve as New CMS Administrator
  • Survey: Cloud adoption in healthcare pushed along by personal use of services
  • How Healthcare Interoperability, Data Exchange Move Forward
  • How EHR Replacement Can Support EHR Adoption, Meaningful Use
  • VA Shares Vision for EHR Interoperability, Modernization
  • How an REC aligned EHR adoption, HIE participation in Maine
  • Siemens Partnership Connects Test Results to EHR Systems
  • ONC to Promote Interoperability in Patient Matching Challenge
  • mHealth groups: Put patient generated data in Stage 3 MU
  • Meaningful use fraud: HHS, DoJ issue warning
  • PCORI offers $206 million for patient care research
  • VA, DoD joint EHR hearing exposes rifts, failures, and frustrations
  • Certified EHR Technology, the Cloud Boost Care Coordination
  • CMS Provides Meaningful Use Penalties, Payments Update
  • Hawaii HIE will improve patient care in East Hawaii
  • Home health Medicare scam leads to $150 million settlement
  • Health Information Exchange Part of Care Quality Initiative
  • ONC issues RFC for Stage 3 Meaningful Use
  • EHR program calls asthma patients when it’s time for a refill
  • Aprima, Allscripts Reach Settlement Concerning MyWay
  • Managing EHR Optimization in Absence of Physician Champions
  • AHA Releases ICD-10 Transition Checklist for Hospitals
  • Computer stolen from Stanford Hospital leads to health data breach
  • HIPAA omnibus rule has implications for EHR, HIE, patients
  • Five Facts to Know Before the ICD-10 Transition Deadline
  • EHR Data Interoperability Needs Strong Security Platforms
  • Browse the latest EHR, MeaningfulUse and ICD-10 White Papers and Guides 

    Related links:

    ePHI will benefit from more policy not just more technology

    UT law professor examines Utah health data breach

    Data security is everything in EHR selection and Implementation

    More on the South Shore Hospital health data breach

    Stiffer encryption means better protection for PHI or EHR

    Continue to site...