By HNS Staff/ Posted on 21 October 2014. While healthcare breaches are on the rise, most small facilities feel that their systems adequately limit the risk of a data breach despite one in three facilities spending less than 10 percent of their IT budget on protecting patient data.
Most notably, a new CSID survey revealed:
- Only 16.7 percent are worried about losing patient data in the event of a data breach, however, most small healthcare facilities are unprepared for a breach to occur. Less than a third (28.6 percent) have a crisis plan in place in the event of a breach.
- Most healthcare facilities (81 percent) require strong passwords to access systems hosting sensitive information and control who has access to electronic health records, but only a third use multi-factor authentication and just one quarter vet and audit vendors that have access to patient data.
- Half of employees who have access to electronic health records also have access to their personal email at work. This makes it easy for patient data to leave a facility without being tracked.
- The vast majority (85 percent) of small healthcare facilities feel that their systems limit the risk of a data breach, but one third spend 10 percent or less of their IT budget on protecting patient data.