Upload
gettins-law-llc
View
48
Download
0
Embed Size (px)
Citation preview
Rethinking ComplianceA Symposium Synopsis
Provided by:
I attended University of the Cincinnati’s 28th Annual
Corporate Law Center Symposium- Rethinking
Compliance.
The Symposium had a lot of great speakers, great information, and food for thought. Here are some
memorable quotes from the speakers:
• On average, 205 days lapse between when a data security breach occurs and it is
discovered.
• Staff training is not about teaching the law, it more about teaching staff to re-think.
• If an unencrypted laptop is stolen, the OCR wants to talk. The laptop
should have been encrypted a long time ago.
• Deliberate disregard and indifference is the same as
knowing.
• If no one is following company policy, it is a red flag.
• Billing and HIPAA are my biggest worries.
• The health care industry sends 3% of its technology budget on security, while
all other industries spend an average 10%.
• 90% of breaches are caused by failure to safeguard.
• 123456 and ‘password’ are still the most common passwords
to be breached.
• Encryption is not enough. It was on these surfaces and
hackers go in.
• Most people want to do the right thing. It is a matter of
people knowing the right thing.
Information Privacy
• Security Risk Analysis
• Training
• Assessment – Breach
Response
• Tracking – Monitoring
For health plan, providers, and Business Associates
www.gettinslaw.com 513-400-3895 [email protected]