WHAT IS HIPAA?
HIPPA (Health Insurance Portability and Accountability Act) was passed by Congress in 1996 to help with the following key areas:
- Allows for the transferability and continuity of health insurance coverage for Americans;
- Allows for health insurance to be protected in the event of people changing or losing their jobs;
- Protects confidential health information;
- Reduces fraud and abuse in the health care system.
HIPAA plays a significant role in all businesses. It is essential that HIPAA regulations are maintained and adhered to, as to ensure that patients and customers are protected across the medical industry.
There are some important things to know about the Texas MD Anderson Cancer Center HIPAA breach. Back between 2012 and 2013, an unencrypted laptop was stolen and another 2 unencrypted thumb drives were lost. As a result of their negligence in the matter, the Cancer Center was fined over $4 million. It was determined that they failed to implement preventative measures that impacted 33,000 patients.
Due to the unencrypted nature of the missing devices, HHS assumed that the PHI (Patient Health Information) was compromised since MD Anderson is unable to prove otherwise. Unlike in criminal proceedings, there is no presumption of innocence until proven guilty. Here, the lack of information is all HHS needs.
Co-founder + Ethical Hacker
Micheal has over 13 years combined experience in Information Security, Information Technology, and Physical Security. He has tackled some of the most daunting certifications in the industry and his passion for the cyber world is unparalleled with exposure to virtually every industry. He continues to hone his skills in Incident Response, Penetration Testing, and Consulting. Recognizing the need for change in cyber security, he volunteers to help entrepreneurs, veterans, and recent graduates.