Patricia Wagner, a Member of the Firm in the Health Care and Life Sciences and Litigation practices, and Jonathan Hoerner, a Summer Associate, were quoted in an article titled "Disturbing Health Care Data Breach Report."

Following is an excerpt:

The Department of Health and Human Services recently submitted its annual report to Congress about breaches of unsecured protected health information for 2011 and 2012, writes Patricia Wagner, Ali Lakhani and Jonathan Hoerner in Epstein Becker & Green's TechHealth Perspectives blog. "This report provides valuable insight for health care entities regarding their data security and enforcement priorities," they say.

Here are some of their top take-aways:

  • Health care providers were the top cause of breaches in both years: For health care data breaches that affected 500+ people, providers came in first. Of all the breaches, providers were responsible for 63 percent and 68 percent in 2011 and 2012 respectively, whereas business associates were only responsible for 27 percent and 25 percent, respectively, and health plans 10 percent and 7 percent.
  • Recommendations: To protect health care entities from major breaches, the authors suggest encrypting devices, paying attention to physical control of devices and removing data before disposing of old ones.
  • Protected health information was the leading cause of breaches in both 2011 and 2012: Theft comprised approximately 50 percent of the breaches both years, whereas loss was at 17 and then 12 percent, unauthorized access 19 and 18 percent and hacking incidents 8 percent in 2011 and up to 27 percent in 2012.
Jump to Page

Privacy Preference Center

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.