HIPAA Compliance: An Institutional Theory Perspective
نویسندگان
چکیده
One would think that the enactment of the HIPAA and associated mandates on data security and privacy has brought a major shift in the information security management practices across the US healthcare sector. Unfortunately, recent industry reports indicate substantially low level of regulatory compliance, thus raising security concerns to US health IT infrastructure. This research develops a regulatory compliance model by drawing insights from institutional theory literature to identify the key drivers influencing compliance, both institutional and market forces e.g. mix of state and federal privacy regulations, pressure from compliance leaders in the region, and the consumer demand for privacy among others. The primary contribution of this research lies in the novel application of institutional theory to explain the variability in regulatory compliance prevalent in the US healthcare sector.
منابع مشابه
The Neo-Institutional View of HIPAA Compliance in Home Health Care
Despite many years since the enactment of the Health Insurance Portability and Accountability Act (HIPAA), healthcare providers have been slow to fully comply with the regulatory requirements, especially the privacy and security rules concerning protection of electronic personal health information. Neo-institutional theory, a dominant analytical perspective of organizational behavior, suggests ...
متن کاملHIPAA Compliance: An Examination of Institutional and Market Forces1,2
One would think that the enactment of the HIPAA, with its mandates on data security and privacy, would have brought a major shift in the security management practices within the US healthcare. Unfortunately, recent industry reports indicate low levels of regulatory compliance, thus raising security concerns for the US health IT infrastructure. This research develops a regulatory compliance mode...
متن کاملHIPAA Compliance: An Examination of Institutional and Market Forces
One would think that the enactment of the HIPAA, with its mandates on data security and privacy, would have brought a major shift in the security management practices within the US healthcare. Unfortunately, recent industry reports indicate low levels of regulatory compliance, thus raising security concerns for the US health IT infrastructure. This research develops a regulatory compliance mode...
متن کاملInformation privacy compliance in the healthcare industry
Purpose – The Health Insurance Portability and Accountability Act (HIPAA) is US legislation aimed at protecting patient information privacy, but it imposes a significant burden on healthcare employees, especially since the privacy provisions are still evolving and healthcare organizations are still struggling to meet compliance criteria. This study seeks to illuminate characteristics of both th...
متن کاملWhich Hospitals Are Complying with HIPAA: An Empirical Investigation of US Hospitals1,2
Since the passage of HIPAA regulation, US hospitals have gone on a high gear by investing organizational resources on HIPAA policy and procedures, information technologies, and information privacy & security safeguards to achieve compliance status by the enforcement dates. Yet, recent industry report, conducted post HIPAA enforcement deadlines, presents a bleak picture of HIPAA compliance, rais...
متن کامل