Hipaa Security Rule Compliance in Small Healthcare Facilities: a Theoretical Framework
نویسندگان
چکیده
The protection of personal information is an area of growing concern for individuals, organizations, and governments. Threats to information security in the healthcare sector carry additional risk since not only are patients’ identities and financial information at risk, but health data is at risk as well. The exposure of sensitive information can cause financial hardship, mental anguish, and in healthcare, lead to social stigma and impacts on medical decisions and treatment [3]. Health information is protected through federal regulation yet many healthcare facilities struggle to meet those requirements due to a variety of factors. This paper presents a theoretical framework of potential drivers of (non)compliance behaviors that may increase understanding of the barriers that small facilities face. The framework and propositions are presented.
منابع مشابه
Information privacy compliance in the healthcare industry
Purpose – The Health Insurance Portability and Accountability Act (HIPAA) is US legislation aimed at protecting patient information privacy, but it imposes a significant burden on healthcare employees, especially since the privacy provisions are still evolving and healthcare organizations are still struggling to meet compliance criteria. This study seeks to illuminate characteristics of both th...
متن کاملFive steps to protect your organization from HIPAA audits.
An audit begins with a notification letter requesting evidence of a covered entity’s HIPAA privacy and security compliance efforts. Thirty to 90 days following receipt of the requested information, KPMG will conduct an on-site visit. The on-site visit will include interviews with the entity’s leadership, examination of the physical space and operations, review of consistency of the entity’s pra...
متن کاملWhich Hospitals Are Complying with HIPAA: An Empirical Investigation of US Hospitals1,2
Since the passage of HIPAA regulation, US hospitals have gone on a high gear by investing organizational resources on HIPAA policy and procedures, information technologies, and information privacy & security safeguards to achieve compliance status by the enforcement dates. Yet, recent industry report, conducted post HIPAA enforcement deadlines, presents a bleak picture of HIPAA compliance, rais...
متن کاملAssessing the effects of the HIPAA privacy rule on release of patient information by healthcare facilities.
The HIPAA privacy rule (HIPAA) has had both positive and negative effects on the release of patient information by healthcare facilities. Although the intention of HIPAA was to protect patient privacy and to promote security and confidentiality of patient information, it has had unintended consequences for facilities. To identify some of these unintended effects, two expert panels of health inf...
متن کاملHIPAA Compliance: An Examination of Institutional and Market Forces1,2
One would think that the enactment of the HIPAA, with its mandates on data security and privacy, would have brought a major shift in the security management practices within the US healthcare. Unfortunately, recent industry reports indicate low levels of regulatory compliance, thus raising security concerns for the US health IT infrastructure. This research develops a regulatory compliance mode...
متن کامل