Practice Management
Home / News / Practice Management / Perfect Your Practice / Cybersecurity Is your patient information practice protected

Cybersecurity: Is your patient information, practice protected?

October 7, 2015
Safeguard patient data and your practice with these cybersecurity tips.

"Stop. Think. Connect." It's the message a national cybersecurity awareness campaign hopes resonates with an evermore digitally connected public. But when it comes to doctors, a more apt slogan would read: "Stop. Think. Protect."

That's because patient health and financial information is the newest target for cybercriminals as data breaches afflict the health care industry's relatively lax cybersecurity measures, most recently with dizzying results.

October is National Cyber Security Awareness Month, a collaborative campaign between the U.S. Department of Homeland Security and National Cyber Security Alliance to educate Americans about safe and secure online practices. It's an appropriate time to review the steps doctors are taking to ensure the information entrusted to them doesn't fall in the wrong hands.

Data breaches can be financially devastating. That's because HIPAA requires doctors to notify patients when their data has been compromised—a process that can cost $30 per record, according to Kevin Johnson, vice president of Lockton Affinity, an AOAExcel® endorsed business partner. For practices with thousands of records, complying with the law can be financially onerous.

To protect patient data and your practice from cyberattacks, follow these recommendations:

  • Ensure electronic patient information is encrypted. Basic passwords won't cut it when it comes to hi-tech hackers, so activate the encryption program that most electronic health record (EHR) systems already offer.
  • Perform a risk analysis to evaluate potential for cyberattack. Not all software is created equal—as doctors of optometry investigating EHR vendors can attest—and older model computer operating systems (OS) might  not be HIPAA compliant any longer due to end of support.
  • Add peace of mind with cyberliability insurance. Protect business functions online, including operating the practice website and storing confidential patient records with  cyberliability insurance available from AOAExcel.
  • Review the HIPAA Privacy and Security Rules. Doctors of optometry who transmit information in an electronic format, such as a claim to Medicare or other payers, are considered covered entities under HIPAA, and should be aware of the  HIPAA Privacy and Security Rules.

Learn more ways to circumvent risks to your patients and practice.

Practice Management
Related News
Perfect Your Practice

Build your practice and protect the planet

Every day is Earth Day at these optometric practices. Considerations for an environmentally friendly practice.

Perfect Your Practice

Does your practice do in-house billing? Here’s something to know

Save 10 hours, see 11 more patients each week—that’s how much time doctors say they recapture weekly by delegating nonphysician tasks to well-trained or certified staff.

Perfect Your Practice

Protecting patient privacy when a clinical observer visits

An optometry student is shadowing you at your practice. Does your patient need to give their consent?

Login to gain access to member-only content
close icon

Forgot username or password?

Not a Member?

Become a member today to access this page.

You do not have access to this content. Call 314.983.4167 for assistance.

Not a member? Join the AOA today!