As more physicians, hospitals, and other healthcare professionals adopt Electronic Health Records (EHR), share digital medical records, implement cloud computing, and engage in social media, the risks, size and frequency of data breaches containing Protected Health Information (PHI) are increasing.
Under HIPAA Omnibus final rule a breach is presumed following every impermissible use or disclosure of Protected Health Information (PHI). Covered entities and business associates must demonstrate, through a properly conducted and documented risk assessment, that there is a low probability of compromise of the affected data/PHI.
As more physicians, hospitals, and other healthcare professionals adopt Electronic Health Records ( EHR), share digital medical records, implement cloud computing, and engage in social media, the risks, size and frequency of data breaches containing Protected Health Information(PHI) are increasing.