doctor was using my favorite offsite backup service for several years. He decided to cut costs by canceling this service. I reminded him that the service worked reliably, and he has already experienced success in the real world of data recovery. I reminded him that the patient data is encrypted) as it traveled through the Internet and b) to service backup servers. I obeyed his wishes and canceled the offsite backup account.
a week later, I asked him how a backup of your patient data. He said, "I have it back up to two $ 75 external drives from a local electronics store. I take them to my car. Here I have a plastic box with a steel cable connected to the console. I put the hard drive in my car on Monday evening and drive home. i changed the discs between the office and my car. Mark, i know that my patient advocate backup data in Boston ... i just feel my solution is better. If something happens to the car, i can say that I took reasonable precautions to protect their patients' medical records. i am in compliance with state and federal HIPAA laws. One of the plant is still in office and one is always in my car ." I am not a child.
I felt this was a terrible idea and replied: "OK, let's see how things will play if the accident occurred. Suppose you leave work one day and can not find your car. In their usual parking lot is a bunch of glass. Your car is gone. to drive with their patients' data is gone. You can call 911 and report the theft of the car, and you tell the operator your car and the hard drive with 1200-plus patients' medical records is gone. Sheriff's deputies will come to fill out a report.
"in the local newspaper, someone listens to the police / fire scanner 24 hours a day. A journalist heard)," car theft, "b)" a prominent doctor, "and C) '1200-plus patients' medical records." You can become tomorrow's front page news. Also, notify the 1200 plus patients that their nonpublic medical information could be compromised because someone stole the car. You may say to you is reasonable precautions to protect patient medical records. You might say that you were HIPAA compliance when the patient informed that your car is stolen.
"It will not stop from becoming a local celebrity. You will become a 'doctor who takes the patient's medical records in the car all day." It will not stop patients from taking their business elsewhere. They no longer believe. Your fine reputation will disappear and your practice will be in danger. Nothing you can do to fix ."
Now let me ask you: Would you trust this doctor with the medical records? Why and why not?
No one is immune from disaster. How would you respond? If you want to continue using this doctor?
No comments:
Post a Comment