Survey Paints Mixed Picture of Security Compliance for Healthcare Industry | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Survey Paints Mixed Picture of Security Compliance for Healthcare Industry

January 22, 2014
by Gabriel Perna
| Reprints

 

According to a recent survey of IT managers, the healthcare industry has made considerable gains in security and compliance when compared to other sectors. 
 
The survey, from DataMotion, a Morristown, N.J.-based email encryption software and health information service provider (HISP), discovered that 90.4 percent of healthcare IT managers say their company has security and compliance policies for transferring files electronically. Approximately, 84 percent of respondents said their employees/co-workers have the capability to encrypt email and 86 percent are striving for full compliance. 
 
Overall, DataMotion found that healthcare was above other industries in terms of security and compliance. Still, the industry is not without faults, the survey revealed. For instance, 87.7 percent of respondents said their company permits the use of mobile devices for email, 40.3 percent report there is no bring your own device (BYOD) policy and 11.7 percent are unsure.
 
"It’s good to see improvements in security and compliance since last year, and healthcare has made significant gains, but serious problems remain and new ones have cropped up,” DataMotion’s Chief Technology Officer, Bob Janacek, said in a statement. “For healthcare specifically, there have been widely publicized incidents of mobile devices being lost or stolen that contain protected health information, potentially resulting in a HIPAA breach."
 
For the survey, DataMotion polled more than 400 IT and business decision-makers across the U.S. and Canada. Thirty-seven percent were from healthcare, the largest industry sampling. 
 
Topics

Comments

Thank you for the recap Gabriel. Did the survey mention anything about the number of healthcare facilities who have instituted policies to restrict access to sensitive patient data through the use of single sign-on or another data security method?

Didn't see anything on single-sign on. Did say more than a quarter in healthcare have used free consumer-type file transfer and only 30.5 percent have restricted those services. So I can't imagine that number is too high.

Thank you for the feedback Gabriel!

News

Community Data Sharing: Eight Recommendations From San Diego

A learning guide focuses on San Diego’s experience in building a community health information exchange and the realities of embarking on a broad community collaboration to achieve better data sharing.

HealthlinkNY’s Galanis to Step Down as CEO

Christina Galanis, who has served as president and CEO of HealthlinkNY for the past 13 years, will leave her position at the end of the year.

Email-Related Cyber Attacks a Top Concern for Providers

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

Former Health IT Head in San Diego County Charged with Defrauding Provider out of $800K

The ex-health IT director at North County Health Services, a San Diego County-based healthcare service provider, has been charged with spearheading fraudulent operations that cost the organization $800,000.

Allscripts Touts 1 Billion API Shares in 2017

Officials from Chicago-based health IT vendor Allscripts have attested that the company has reached a new milestone— one billion application programming interface (API) data exchange transactions in 2017.

Dignity Health, CHI Merging to Form New Catholic Health System

Catholic Health Initiatives (CHI), based in Englewood, Colorado, and San Francisco-based Dignity Health officially announced they are merging and have signed a definitive agreement to combine ministries and create a new, nonprofit Catholic health system.