
Make sure your clinicians have the support they need to provide competent care with clinical competency training and development from HealthStream.
View All ProductsThe suite of healthcare onboarding solutions available from HealthStream aids in nurse retention and improved patient outcomes.
View All ProductsGive your healthcare staff the decision support and skills training they need with the online products available from HealthStream.
View All ProductsHealthStream's solutions allow your healthcare workforce to be confident and competent with the knowledge they are upholding the highest of standards.
View All ProductsHealthStream’s learning management system and comprehensive suite of competency management tools empower your healthcare workforce to deliver the best patient care.
View All ProductsExperience standardized and centralized healthcare credentialing, privileging, and enrollment that is smarter and faster than ever before.
View All ProductsAutomated, web-based provider credentialing and enrollment software for growing medical groups.
View All ProductsNCQA-certified CVO verification services for initial and re-credentialing files in an overflow or full-service capacity for healthcare organizations.
View All ProductsSearch, review, and add providers into the Epic provider master file with our Epic app integration, Provider Validate.
View All ProductsHealthStream offers performance learning management solutions to help develop your healthcare staff into leaders and reduce turnover.
View All ProductsHealthStream works with healthcare organizations to create engaging and high-quality training videos for your staff and management.
View All ProductsImprove care quality and save money by making informed decisions about your healthcare facility and staff with HealthStream's reporting analytics solution.
View All ProductsHealthStream's proven methods for the improvement and overall engagement of your healthcare staff foster a positive workplace and increase retention rates.
View All ProductsThe leadership development program from HealthStream helps mold your high-potential healthcare employees into proven leaders.
View All ProductsFulfill compliance requirements with a variety of programs and courseware designed to address critical regulatory requirements as well as educate staff to recognize and mitigate risks.
View All ProductsBy increasing your healthcare staff's focus on quality and safety with HealthStream, they can help to reduce medical errors and readmission rates.
View All ProductsLearn about what HealthStream's healthcare policy management software and how it can help aid your organization efforts.
View All ProductsHealthStream's education helps address diversity, equity, and inclusion within your organization, as well as promoting health equity in the communities you serve.
View All ProductsDeliver custom or industry designed product training directly to patient and resident care environments to reinforce proper use.
View All ProductsTeach your healthcare staff about the revenue cycle and claim management through targeted training and video tools from HealthStream.
View All ProductsIn all areas of resuscitation, from neonatal to elderly care, clinical deterioration is a risk that can be avoided with the help of HealthStream's training programs.
View All ProductsHealthStream's EMS Program offers a comprehensive, CAPCE accredited EMS course library that meets National Registry annual recertification.
View All ProductsNurture the skills of your nurses and medical staff to help mold them into effective leaders with development training from HealthStream.
View All ProductsHealthcare scheduling software designed to optimize staffing requirements & elevate patient care
View All ProductsPrecisely align staffing and needed resources to enable efficient patient flow and high-quality, cost-effective patient care.
View All ProductsHealthStream’s free nurse schedule app, NurseGrid™, is built to help you care for your staff and engage with their specific needs.
View All ProductsMitigate risk and elevate your quality of care. Improving both clinical and business outcomes starts with a smarter, more integrated approach to regulatory training, continuing education and quality management.
Learn MoreThe privacy of personal health records is governed by the Health Insurance Portability and Accountability Act, known throughout the healthcare world as HIPAA, signed into law in 1996. In the years since, HIPAA has become one of the most widely cited and discussed regulations in healthcare compliance.
Much External Vigilance
Much of the recent focus on HIPAA and threats to protected health information and data has been external, alerting providers and staff to criminal entities wanting access to large amounts of individual data, gained by breaches of cybersecurity. For example, the U.S. Department of Health & Human Services recently released guidance titled “Ransomware and HIPAA.” Ransomware locks up a computer or network to prevent access to data until a ransom, usually demanded in Bitcoin, is paid. Hospitals are the perfect mark for this kind of extortion because they provide critical care and rely on up-to-date information from patient records. Without access to medical histories, drug usage, surgery directives, and other information, patient care can get delayed or halted, which makes hospitals more likely to pay a ransom rather than risk delays that could result in death and lawsuits.
Ransomware has the potential to expose patients’ Protected Health Information (PHI). PHI is at the center of HIPAA regulation, and any release of PHI is a potential HIPAA violation, even when it occurs due to nefarious and illegal acts of outside 3rd parties. Ultimately every healthcare facility is responsible for safeguarding the health information of its patients.
Insider HIPAA Threats
Importantly, while large-scale data breaches are the work of cyberattacks from outsiders, insider threats also are a danger to healthcare organizations. Even though the scale of these violations is nowhere similar, the damage to reputation and resulting fines can be significant. These undeniably illegal breaches often occur related to famous people. Typical situations involve hospital employees who “access records outside of their traditional job duties—especially if hospital patients are high-profile individuals or celebrities” (Becker’s Health IT & CIO Report, 2015).
According to Etactics.com, “there is a fine line between finding out that a celebrity checked into a hospital and digging through their medical records” (Moneypenny, 2019). The same website has compiled a list of 20 reported celebrity HIPAA violations that demonstrate another important element of healthcare privacy about which staff at every level of a medical facility must be trained.
The same article shares that since 2003, when Dr. Huping Zhou “ received a four-month sentence and $2,000 fine” for illegally viewing “medical records of celebrities and high-profile patients,” in violation of HIPAA, the list of celebrities whose privacy has been violated keeps growing. For example, healthcare staff has been implicated in criminally accessing and sometimes selling information about:
It’s important to remember that like all the rest of us, famous people have a legal right to privacy and to controlling information about their healthcare. Being well-known changes nothing about how medical records are protected under HIPAA.
Use Training to Create a Culture of Compliance
An August 2019 FierceHealthcare article details the findings from a Kaspersky survey of North American healthcare staff about healthcare privacy. Results showed “ nearly 1 in 5 respondents (19%) said there needed to be more cybersecurity training by their organization.” More alarmingly, “nearly a fifth of U.S. respondents (18%) reported they did not know what the HIPAA security rule meant” (Landi, 2019).
These sobering statistics serve to remind us of the importance of regular compliance training—the kind that changes behaviors and helps to communicate the commitment to compliance of top leadership, to influence the overall culture of your organization. Providing compliance training is a way to ensure your business is conducted ethically and within the boundaries of the law, and it reinforces your organization’s good reputation. Educating your organization also demonstrates a proactive approach to the detection and prevention of unlawful activity.
Importantly, compliance training should impart individual responsibility that reinforces the obligation to be a good corporate and organizational citizen and to be accountable. Training should help employees apply complex laws and regulations to their daily work, and it should include how they can access your policies and procedures for guidance. What can make HIPAA training much more meaningful is to provide examples of illegal or suspicious behaviors that illustrate the kinds of things that you want reported. Violations involving celebrities deserve to be one of these examples.
References
Becker’s Health IT & CIO Report, “7 celebrity data breaches: When employees snoop on high-profile patients” 12/11/2015, retrieved at https://www.beckershospitalreview.com/healthcare-information-technology/7-celebrity-data-breaches-when-employees-snoop-on-high-profile-patients.html.
Landi, H., “Survey finds alarming number of healthcare workers have not had cybersecurity training,” FierceHealthcare, August 21, 2019, Retrieved at https://www.fiercehealthcare.com/tech/despite-ongoing-cyber-threats-32-healthcare-employees-never-received-cybersecurity-training.
Moneypenny, M., “The Ultimate List of Celebrity HIPAA Violations You Won't Believe
The Ultimate List of Celebrity HIPAA Violations You Won't Believe,” June 24, 2019, Retrieved at https://www.etacticsinc.com/blog/celebrity-hipaa-violations.
Access our article Building an Indestructible Healthcare Compliance Training Program.
Expand the decision-making skills and effectiveness of your healthcare workforce with HealthStream's clinical development programs and services.
View All Clinical DevelopmentMake sure your clinicians have the support they need to provide competent care with clinical competency training and development from HealthStream.
View All ProductsThe suite of healthcare onboarding solutions available from HealthStream aids in nurse retention and improved patient outcomes.
View All ProductsGive your healthcare staff the decision support and skills training they need with the online products available from HealthStream.
View All ProductsHealthStream's solutions allow your healthcare workforce to be confident and competent with the knowledge they are upholding the highest of standards.
View All ProductsHealthStream’s learning management system and comprehensive suite of competency management tools empower your healthcare workforce to deliver the best patient care.
View All ProductsDelivers everything you need to request, gather, and validate information about a provider to create a single source of truth for downstream processes.
View All CredentialingExperience standardized and centralized healthcare credentialing, privileging, and enrollment that is smarter and faster than ever before.
View All ProductsAutomated, web-based provider credentialing and enrollment software for growing medical groups.
View All ProductsNCQA-certified CVO verification services for initial and re-credentialing files in an overflow or full-service capacity for healthcare organizations.
View All ProductsSearch, review, and add providers into the Epic provider master file with our Epic app integration, Provider Validate.
View All ProductsHealthStream’s learning management system and comprehensive suite of competency management tools empower your healthcare workforce to deliver the best patient care.
View All Learning & PerformanceHealthStream offers performance learning management solutions to help develop your healthcare staff into leaders and reduce turnover.
View All ProductsHealthStream works with healthcare organizations to create engaging and high-quality training videos for your staff and management.
View All ProductsImprove care quality and save money by making informed decisions about your healthcare facility and staff with HealthStream's reporting analytics solution.
View All ProductsHealthStream's proven methods for the improvement and overall engagement of your healthcare staff foster a positive workplace and increase retention rates.
View All ProductsThe leadership development program from HealthStream helps mold your high-potential healthcare employees into proven leaders.
View All ProductsWhen you enact HealthStream's quality compliance solutions, you can do so with the confidence your healthcare organization will meet all standards of care.
View All Quality & ComplianceFulfill compliance requirements with a variety of programs and courseware designed to address critical regulatory requirements as well as educate staff to recognize and mitigate risks.
View All ProductsBy increasing your healthcare staff's focus on quality and safety with HealthStream, they can help to reduce medical errors and readmission rates.
View All ProductsLearn about what HealthStream's healthcare policy management software and how it can help aid your organization efforts.
View All ProductsHealthStream's education helps address diversity, equity, and inclusion within your organization, as well as promoting health equity in the communities you serve.
View All ProductsHealthStream offers professional training and education on how to best optimize your reimbursement process within your healthcare organization.
View All ReimbursementTeach your healthcare staff about the revenue cycle and claim management through targeted training and video tools from HealthStream.
View All ProductsImprove the preparedness of your staff, increase survival rates, and cut costs with the advanced resuscitation training services from HealthStream.
View All ResuscitationIn all areas of resuscitation, from neonatal to elderly care, clinical deterioration is a risk that can be avoided with the help of HealthStream's training programs.
View All ProductsHealthStream's EMS Program offers a comprehensive, CAPCE accredited EMS course library that meets National Registry annual recertification.
View All ProductsNurture the skills of your nurses and medical staff to help mold them into effective leaders with development training from HealthStream.
View All ProductsMake sure your healthcare staff can schedule out appointments and work schedules with ease using HealthStream's line of software solutions.
View All Scheduling & Capacity ManagementHealthcare scheduling software designed to optimize staffing requirements & elevate patient care
View All ProductsPrecisely align staffing and needed resources to enable efficient patient flow and high-quality, cost-effective patient care.
View All ProductsHealthStream’s free nurse schedule app, NurseGrid™, is built to help you care for your staff and engage with their specific needs.
View All Products