HIPAA Blog

[ Wednesday, March 16, 2011 ]

Data Breach Stats: There's a lot of discussion on the AHLA HIT list this morning about data breach statistics, some of which I'd like to share.

Michael Silhol of HayBoo here in Dallas reports: "At the National HIPAA Summit last week, the OCR reported that there had been more than 14,000 reports of breaches involving fewer than 500 individuals from September 2009 through December 2010. There were also 221 reports of breaches involving more than 500 individuals in the same time period. The large breaches (500+) were broken down by type of breach (i.e., theft 51%, loss 16%, hacking 6%, improper disposal 5% and unauthorized access 21%). They were also broken down by location of breach (laptop 24%, paper records 21%, desktop computer 16%, portable elctronic device, 14%, network server, 10%, email 3%, EMR 2% and other 10%). The OCR presenter did not break the breaches down by size of institution involved."

Alan Goldberg sends these three links from the same conference.

And Dennis Melamed notes that his publication provides current stats monthly, if you are willing to give up your email address to get them.

Jeff [1:21 PM]

Comments: Post a Comment

http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template