"Advanced Breach Notification Case Studies," Privacy and Security Institute, AHIMA, Los Angeles
Effectively protecting the confidentiality of health information requires a strategic balance between privacy and security for achieving successful compliant outcomes. This two day, advanced-level meeting focused on enhancing attendee knowledge and staying current of the hottest privacy and security issues and trends today.
HIPAA requires entities to conduct a breach risk assessment, in which at least four factors are considered to determine whether there is a "low probability of compromise" of the data. But what does it mean for data to be "compromised?" Can one breach risk assessment factor outweigh the others? What other factors can be considered in a breach risk assessment?
This session provided a refresher on the Breach Notification Rule. DWT partner Adam Greene then led an interactive discussion of common but complex case studies to identify which ones qualify as a reportable breach, obtaining the attendees' input throughout.