Comments on: P2P networks rife with sensitive health care data, researcher warns http://www.phiprivacy.net/?p=896 Medical Privacy: Who's losing your data? Who's selling it? Tue, 07 Sep 2010 21:04:10 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Dissent http://www.phiprivacy.net/?p=896&cpage=1#comment-1276 Dissent Sun, 01 Feb 2009 12:47:19 +0000 http://www.phiprivacy.net/?p=896#comment-1276 Are you aware that EPIC.org says on its web site that " Patient Privacy Rights has expressed support for the legislation. " ? I agree that all breaches need to be reported, and wish more people would contact their legislators to say that we want and need strong breach notification and disclosure laws (and not just for HIT). Are you aware that EPIC.org says on its web site that ” Patient Privacy Rights has expressed support for the legislation. ” ?

I agree that all breaches need to be reported, and wish more people would contact their legislators to say that we want and need strong breach notification and disclosure laws (and not just for HIT).

]]> By: Deborah C. Peel, MD http://www.phiprivacy.net/?p=896&cpage=1#comment-1275 Deborah C. Peel, MD Sun, 01 Feb 2009 12:17:40 +0000 http://www.phiprivacy.net/?p=896#comment-1275 The health data "leaks" reported in the Dartmouth study below would NOT be reported to the victims because the HIT stimulus bill exempts "inadvertant" breaches from the reporting requirement. Only "willful" breaches have to be reported. But Americans need to know about ALL breaches, not just the few, rare "willful" breaches. The current version of the HIT bill is not adequate to address the P2P problems the Dartmouth researcher found: • "The information found on the networks originated from health care companies, suppliers and patients, and included sensitive patient health and identity information, insurance and billing data, and business documents. The data found on P2P networks included medical diagnoses and psychiatric evaluations, and even blank, signed prescription forms that anyone could have easily copied and filled out." If you care about YOUR privacy or that the 'breach notice' in the HIT stimulus bill has been gutted, please call your members of Congress on Monday. Congress wants the Stimulus package on President Obama's desk to sign in the next 2 weeks. Deborah C. Peel, MD Founder and Chair Patient Privacy Rights www.patientprivacyrights.org Our mission is to ensure Americans control all access to their health records. The health data “leaks” reported in the Dartmouth study below would NOT be reported to the victims because the HIT stimulus bill exempts “inadvertant” breaches from the reporting requirement. Only “willful” breaches have to be reported. But Americans need to know about ALL breaches, not just the few, rare “willful” breaches.

The current version of the HIT bill is not adequate to address the P2P problems the Dartmouth researcher found:

• “The information found on the networks originated from health care companies, suppliers and patients, and included sensitive patient health and identity information, insurance and billing data, and business documents. The data found on P2P networks included medical diagnoses and psychiatric evaluations, and even blank, signed prescription forms that anyone could have easily copied and filled out.”

If you care about YOUR privacy or that the ‘breach notice’ in the HIT stimulus bill has been gutted, please call your members of Congress on Monday. Congress wants the Stimulus package on President Obama’s desk to sign in the next 2 weeks.

Deborah C. Peel, MD
Founder and Chair

Patient Privacy Rights

http://www.patientprivacyrights.org

Our mission is to ensure Americans control all access to their health records.

]]>