Preview

Building A Better MIS Trap

Satisfactory Essays
Open Document
Open Document
586 Words
Grammar
Grammar
Plagiarism
Plagiarism
Writing
Writing
Score
Score
Building A Better MIS Trap
Mini Case #2

Brandi Glenn
HCMN 305
October 3, 2011
Building a Better MIS-Trap
Introduction
In this case study, I am acting as a CEO. The situation at hand involves the breach of information on patients who have been seen in our facilities that are HIV positive. My job is on the line unless I act expeditiously to resolve the situation. I hired a computer security consultant who is undercover as a nurse manager within the organization to determine how it was possible for the violations against HIPPA (Health Insurance Portability and Accountability Act) regulations concerning the 4,000 patients whose information was leaked to the public through newspapers, magazines, and the Internet. Her findings were problematic and involved unattended computers that were logged into by staff members, passwords shared and not kept confidential or changed often or easily seen and identified, fax machines and printers easily accessed by anyone, remote access to the system even from our homes, and easy access to sensitive patient files.
Two Major Issues The two major issues identified in this situation is the violation against HIPPA regulations which is a US law designed to provide privacy standards to protect patients ' medical records and other health information provided to health plans, doctors, hospitals and other health care providers. This was an act developed by the Department of Health and Human Services, in which new standards provide patients with access to their medical records and more control over how their personal health information is used and disclosed. The HIPAA Privacy Rule provides federal protections for personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes (HHS.gov 2011). The other issue involves an outdated


Cited: U.S Department of Health and Human Services. (n.d.). Retrieved September 29, 2011, from http://www.hhs.gov/ocr/privacy/hipaa/understanding/index.html
Continue Reading
View Writing Issues

You May Also Find These Documents Helpful

  • Satisfactory Essays

    Hcs 483 Wk1Dq1 2
    • 457 Words
    • 2 Pages

    Hcs 483 Wk1Dq1 2

    Prior to the enactment of the Health Insurance Portability and Accountability Act (HIPPA) health information was able to be shared without the knowledge or permission of the patient. This information was available to just about anyone including insurance agencies, places of employment and even loan lenders. People would potentially use individuals’ health information to deny them work or a loan for their home and even impacting higher insurance rates or denial of coverage. According to U.S. Department of Health and Human Services (n.d.), “The Privacy Rule establishes a Federal floor of safeguards to protect the confidentiality of medical information. State laws which provide stronger privacy protections will continue to apply over and above the new Federal privacy standards.” (para. 1). Also, as medical records continue to move entirely to the new standard of electronic records it is important to have one standard across the country to protect everyone’s information. Electronic health records (EHR) make it easier than ever to accidentally share medical information, to include having it stolen. Medical providers are just as likely to face consequence if their facility is broken in to and the hard drive with patients information is stolen as they would be if they gave the information away themselves. In general HIPPA protects patients’ information as well as their right to be treated equally.…

    • 457 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Good Essays

    Finanical Law and Regulation Questions
    • 995 Words
    • 4 Pages

    Finanical Law and Regulation Questions

    The three broad objectives HIPAA privacy standards were designed to accomplish are; define and limit the circumstances in which individuals use and disclose patient health information, establish individual rights regarding patient health information, and require protected individuals to adopt administrative safeguards to protect the confidentiality and privacy of patient healthcare information (Cleverley, pg.95). The HIPAA Privacy Standards prohibit covered entities from using or disclosing individually identifiable health information that is or has been transmitted or maintained electronically. This requirement isn’t limited to the record in which the information appears but applies to the actual information itself. Any information that has been transmitted by email, fax, telephone, or any other…

    • 995 Words
    • 4 Pages
    Good Essays
    Read More
  • Satisfactory Essays

    Jsbmha And HIPAA Case Study
    • 388 Words
    • 2 Pages

    Jsbmha And HIPAA Case Study

    1. How does HIPPA serve to protect patient rights? A patient’s health information can be shared with doctors and hospitals for treatment and care. The information can also be shared with family members who the patient has given permission to access the patient’s records. HIPPA’s guidelines make clear exactly what information about patients is protected. Called PHI, this information includes anything that would identify a patient, from name, Social Security numbers and addresses to broader identifiers like race, age and home state. Information about the person’s health care needs or medical history is also considered PHI.…

    • 388 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    JSBMHA and HIPAA Case Study
    • 365 Words
    • 1 Page

    JSBMHA and HIPAA Case Study

    According to the laws concerning HIPAA where it pertains to serving and protecting patients’ rights, HIPAA is put into place to protect patient rights by not allowing any medical professional to discuss a patients prognosis, symptoms or any other specifics regarding their care with another individual not directly involved with their case. Because of this, a patient’s identity and confidential information is kept that way. Violations are punishable by law.…

    • 365 Words
    • 1 Page
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    Unit 4 Assignment 1 IS3550
    • 253 Words
    • 1 Page

    Unit 4 Assignment 1 IS3550

    The Health Insurance Portability and Accountability Act (HIPAA) was passed in 1996. The main purpose of this law was to improve the flow of health information. At this time, the great majority of the records were still in paper form, however there was a push for the healthcare industry to become digital. Prior to 1996, the only federal law that regulated the privacy of health information was the Privacy Act of 1974. Between 2003 and 2005, there were more than 13,000 privacy complaints, but no civil enforcement actions were brought by the HHS Office for Civil Rights (OCR). In that same period, there was only one HIPAA criminal action, against a lab assistant who used the personal data of a terminal cancer patient for identity theft. By 2008, 33,000 + complaints had been filed with OCR, only about 8,000 were investigated with 5,600 leading to corrective action, yet no fines had been issued. Several key dates for HIPAA since then are: February 17, 2009- ARRAs HITECH Act Signed into Law. HIPAA revised to strengthen enforcement penalties, require breach notifications, and expand patient rights 2009OCR increases HIPAA Enforcement January 25, 2013- HITECHs HIPAA Modification Final Rule Release There is no single part of the HIPAA complaint form that should be singled out for attention, other than simplifying the form completion instructions. In the situation where every instructor Brandon ford Mr. Redmond 1-14-2015 IS3350 and all associated staff had access to the students health care records, Premier College is in direct violation of HIPAA.…

    • 253 Words
    • 1 Page
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    HIPAA Violation: Article Analysis
    • 160 Words
    • 1 Page

    HIPAA Violation: Article Analysis

    In the article “ Hospitals fined $4.8M for HIPAA Violation” by Erin McCann reports that several health care organizations are in HIPAA violation due to human error. A hospital and a medical center were fined because patients information were available on line. The breach was due to a physician who developed an application for the hospital and a medical center. During the process of transferring patient information to one computer at home accidently made the information available on the Internet. A patient’s family member discovered it when they notice their family members private health information was on line.…

    • 160 Words
    • 1 Page
    Satisfactory Essays
    Read More
  • Better Essays

    How Hipaa Violations Affect the Medical Billing Process
    • 1589 Words
    • 7 Pages

    How Hipaa Violations Affect the Medical Billing Process

    HIPAA confidentiality is important for very patient but for some reasons when they hear someone has HIV or AIDS it gives them the right to talk about it with others which have no reason to know. I will show why it is so important to be sensitive to this type of health conditions. Will examine the social, legal, and ethical ramifications of improper information disclosure.…

    • 1589 Words
    • 7 Pages
    Better Essays
    Read More
  • Satisfactory Essays

    Hsm310 Hipaa Assignment
    • 893 Words
    • 4 Pages

    Hsm310 Hipaa Assignment

    | HIPAA Rules(1)Privacy Rules: According to the U.S Department of Health and Human Services (HHS), the HIPAA Privacy Rule establishes national standards to protect individuals’ medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. It’s important because the Rule requires appropriate safeguards to protect the privacy of personal health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. This rule impacts the staff by: Not sharing the information with others who have no need to know, including co-workers, family members or friends, minimizing opportunities for patient information to be overheard by others, never sharing passwords, disposing of information containing PHI properly such as shredding paper files(2)Security Rules: The HIPAA Security Rule establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule is important because it requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information. It impacts the organization by forcing the healthcare industry to adopt uniform electronic transaction standards for…

    • 893 Words
    • 4 Pages
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    Benefit of Hipaa
    • 407 Words
    • 2 Pages

    Benefit of Hipaa

    Who can argue with the benefits of reducing paper in healthcare industry? Also who will argue,…

    • 407 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Good Essays

    Henrietta Lacks
    • 894 Words
    • 4 Pages

    Henrietta Lacks

    What does HIPAA stand for, what does it mean? And why is it so important? HIPAA stands for Health Insurance Portability and Accountability Act. This law helps maintain privacy of health information, which prevents improper use of ones medical records. If you work in a hospital or clinic, every employee receives a thick packet on HIPAA. If you’re like me, you might skim through it on a thirty minute break and not pay it any mind. (It’s the truth). Because of not reading that packet, I never understood what it was about or its importance. After absorbing Henrietta’s story, thank goodness this Act was approved when it was, which was1996. The article HIPAA Fine Is First displayed the consequences by not practicing this Act. In Zigmonds article June of this year 2011, Cignet Health Center refused 41 patients of obtaining any medical records, even upon request. HIPAA states records are to be given to a patient no later than 60 days. For not doing so, Health and Human services (HHS) fined the company with 4.3 million dollars. 1.3 million by not following HIPAA and 3 million for not cooperating with HHS. If this Act was approved over fifty years ago, Henrietta would not be known worldwide due to medical classification,…

    • 894 Words
    • 4 Pages
    Good Essays
    Read More
  • Good Essays

    Hcs 335 Administrative Ethics Research Paper
    • 585 Words
    • 3 Pages

    Hcs 335 Administrative Ethics Research Paper

    As of today there are issues with the information technology systems, clinical data management systems and the increasing automation of the electronic medical records. All of these present a significant amount of patient privacy and confidentiality issues. When we say confidential, meaning in healthcare we are talking about the protection of a patient’s medical information and keeping their medical information private and safe from any third parties. Administrators are expected to follow the HIPAA Privacy Rule. The HIPAA protects the privacy of patient’s medical information. Patient’s medical records are sensitive personal information that is covered with privacy. There are several ethical…

    • 585 Words
    • 3 Pages
    Good Essays
    Read More
  • Satisfactory Essays

    HIPAA Privacy Analysis
    • 170 Words
    • 1 Page

    HIPAA Privacy Analysis

    Patient care has been vulnerable by HIPAA; healthcare providers cannot easily share patient’s information. Each patient or power of attorney must give implied permission for a healthcare provider to share any personal information. Deprived of not being able to share patient information between providers, it takes longer time to get critical information that can affect patient care. Healthcare organizations faces supplementary legal costs if they violate HIPAA privacy provisions. These costs make many organizations careful of sharing a patient information, even if the patient has given permission for information sharing, so that’s why everything has to be documented, initial, and signed.…

    • 170 Words
    • 1 Page
    Satisfactory Essays
    Read More
  • Satisfactory Essays

    HIPAA Health: The Privacy Rule and Health Care Practice

    • 447 Words
    • 2 Pages

    HIPAA Health: The Privacy Rule and Health Care Practice

    On April 14, 2003 the Health Insurance portability and Accountability Act of 1996 (HIPAA) took effect, and these federal regulation have had an impact on the field of healthcare. It affords certain protections to persons covered by health care plans, including continuity of coverage when changing jobs, standards for electronic health care transactions, and primary safeguards for the privacy of individually identifiable patient information. Protecting healthcare information is the key essential in a healthcare organization. In an Internet video, Barclay (2010) states it is imperative that all healthcare providers be knowledgeable about the HIPAA standards and protect the rights of patients and residents. However, patients also have the responsibilities to give accurate information about their condition and to participate in treatment and care. With that being said the doctrine of informed consent allows patients full disclosure to make a knowledgeable decision about their care. Failure of patient confidentiality gives rise to legal liability. Identifying different forms of security breaches and creating measures to safeguards standards, procedure and policies against leaking personal health information (PHI) will maintain and promote growth of an organization.…

    • 447 Words
    • 2 Pages
    Satisfactory Essays
    Read More
  • Good Essays

    Ethics HIPAA
    • 805 Words
    • 3 Pages

    Ethics HIPAA

    There are several items that would characterize an individual within a business having unethical business conduct. The use of an individual’s confidential information is not only an ethical violation, it is considered illegal. This is called a violation of Health Insurance Portability and Accountability Act (HIPAA) of 1996.…

    • 805 Words
    • 3 Pages
    Good Essays
    Read More
  • Good Essays

    Releasing Protected Health Information
    • 1028 Words
    • 5 Pages

    Releasing Protected Health Information

    The Health Insurance Portability and Accountability act of 1996 or HIPAA, was put in place as an attempt to reform health care during the Clinton administration by making it possible for workers, of any profession, to change jobs regardless if the worker, or any member of their family, have a pre-existing medical condition, decreasing paperwork which is associated with the processing of health claims, and by reducing health care abuse and fraud, and by assuring the privacy and security of health information. HIPAA’s standards for privacy of individually identifiable health information or privacy rule includes restrictions which protect the confidentiality and security of health information, and determines a criterion to protect the confidentiality of individually identifiable health information that is maintained or transmitted through electronic means in association with certain administrative and financial transactions such as electronic transfer of health insurance claims. The covered entity, in most cases, is required to obtain an individual’s authorization prior to disclosing any health information. And in most circumstances the patient or a legal representative of the patient controls the disclosure of PHI to any third party.…

    • 1028 Words
    • 5 Pages
    Good Essays
    Read More

Related Topics