Abstract
This paper discusses the challenges associated with privacy in health care in the electronic information age based on the Health Insurance Portability and Accountability Act (HIPAA) and the Security Rules. We examine the storing and transmission of sensitive patient data in the modern health care system and discuss current security practices that health care providers institute to comply with HIPAA Security Rule regulations. Based on our research results, we address current outstanding issues that act as impediments to the successful implementation of security measures and conclude the discussion and offer possible avenues of future research.
Similar content being viewed by others
References
Volonino L, Robinson SR (2004) Principles and practice of information security: Protecting computers from Hackers and Lawyers, Prentice Hall, Inc., Upper Saddle River, NJ
Schneider J, Mercuri RT (2004) The HIPAA-potamus in health care data security. Commun ACM 47(7)
Federal Register: Rules and Regulations. 65(160), August 2000
Workgroup for Electronic Data Interchange (WEDI) (2004) HIPAA Security White Papers
Workgroup for Electronic Data Interchange (WEDI) (2004) Security and Privacy Workgroup Introduction
Washington District of Colombia Department of Health. Retreived September 17, 2005 at http://dchealth.dc.gov/hipaa/hipaaps.shtm..
Kaufman JH, Edlund S, Ford DA (2002) The social contract core. Honolulu, HI, USA
Hagland M. Customized automation: OB/GNY practices are finding EMR systems designed specifically for them. Healthcare Informatics Online March 2004. Available at http://www.healthcare-informatics.com/issues/2004/03_04/specialty.htm..
Hooda JS, Dogdu E, Sunderraman RJ (2004) Health level-7 compliant clinical patient records system. Commun ACM 47(7)
Goldberg IV (2000) Electronic medical records and patient privacy. Health Care Manager 18:3
Eddy AC (2000) Annals of health law, Annual 2000 v9 p1-72, A Critical Analysis of Health and Human Services' Proposed Health Privacy Regulations in Light of the Health Insurance Privacy and Accountability Act of 1996
Essex D. The many layers of workflow automation. Healthcare Informatics Online June 2000. Available at http://www.healthcare-informatics.com/issues/2000/06_00/essex.htm
Massachusetts poised to become first state with electronic medical records. Associated Press, Boston Herald.com, December 2004. Available at http://news.bostonherald.com/localRegional/view.bg? articleid=57497
Brewin B. Electronic health records spread. Federal Computer Weekly December 2004. Available at http://www.fcw.com/fcw/articles/2004/1206/web-ehr-12-07-04.asp
Panko R (2005) Business Data Networks and Telecommunications, 5th edn., Prentice Hall, Inc., NJ
Panko R (2004) Corporate Computer and Network Security Prentice Hall Inc., NJ
Onam PW, Hanebutte N (2005) Fundamentals—and Beyond-of Computer & Network Security. Powerpoint Slides from Proceedings of the 38th Annual Hawaii International Conference on System Sciences, Waikola, Hawaii
Masys DR (2002) Effects of Current and Future Information Technologies on The Health Care Workforce; Health Care Professionals are Asuming the Role of “Tech Support” in Explaining Medical Terms to Internet-savvy Patient-Consumers The People-To-People Health Foundation Inc.
Krulwich AS, McDonald BL (2001) The vulnerability of HIPAA regulations to first and fourth amendment attack: An addendum to “evolving constitutional privacy doctrines affecting healthcare enterprises.” Food Drug Law J 56
Choi YB, Seo H, Blackburn JM (2005) A quantification model using P3P in privacy control for telecommunications service management. Int J Serv Stand 1(4); pp 426–445.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Choi, Y.B., Capitan, K.E., Krause, J.S. et al. Challenges Associated with Privacy in Health Care Industry: Implementation of HIPAA and the Security Rules. J Med Syst 30, 57–64 (2006). https://doi.org/10.1007/s10916-006-7405-0
Received:
Accepted:
Issue Date:
DOI: https://doi.org/10.1007/s10916-006-7405-0