BreachExchange mailing list archives
California Attorney General Issues Guidelines on Medical Identity Theft
From: Lee J <lee () riskbasedsecurity com>
Date: Tue, 29 Oct 2013 13:02:56 +1100
http://www.esecurityplanet.com/network-security/california-attorney-general-issues-guidelines-on-medical-identity-theft.html California Attorney General Kamala Harris recently published guidelines on preventing and remedying medical identity theft, including best practice recommendations for the health care industry and tips for consumers (h/t PHIprivacy.net). The guidelines are part of a report entitled Medical Identity Theft: Recommendations for the Age of Electronic Medical Records [PDF]. Key recommendations for health care providers include implementing an identity theft response program with clear written policies and procedures for investigating a flagged record, and offering patients who believe they may be victims of medical identity theft a free copy of the relevant portions of their medical records to review for signs of fraud. Key recommendations for insurers include making Explanation of Benefits statements patient-friendly, including information on how to report any errors discovered, and using automated fraud detection software to flag suspicious claims that could be the result of identity theft. "Medical identity theft has been called the privacy crime that can kill," Harris said in a statement. "As the Affordable Care Act encourages the move to electronic medical records, the health care industry has an opportunity to improve public health and combat medical identity theft with forward-looking policies and the strategic use of technology."
_______________________________________________ Dataloss Mailing List (dataloss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss For inquiries regarding use or licensing of data, e-mail sales () riskbasedsecurity com Supporters: # OWASP http://www.appsecusa.org # Builders, Breakers and Defenders # Time Square, NYC 20-21 Nov o()xxxx[{::::::::::::::::::::::::::::::::::::::::> Risk Based Security (http://www.riskbasedsecurity.com/) Risk Based Security offers security intelligence, risk management services and customized security solutions. The YourCISO portal gives decision makers access to tools for evaluating their security posture and prioritizing risk mitigation strategies. Cyber Risk Analytics offers actionable threat information and breach analysis.
Current thread:
- California Attorney General Issues Guidelines on Medical Identity Theft Lee J (Oct 30)