Eighty-five percent of acute care settings and physician group practices report compliance with HIPAA standards, while only 65 percent report being in compliance with a range of other privacy and security standards, according to a new survey.
A survey of 360 organizations by the Aberdeen Group and Liaison Technologies found that healthcare and life sciences organizations report having at least one data breach and one data noncompliance event than do organizations in other industries, despite having a larger percentage of their IT resources dedicated to prevention, according to an analysis of the survey from Health Data Management.
The noncompliance in healthcare organizations is due to the complexity of privacy and security requirements, immature security initiatives, and ineffectiveness of current procedures, the survey found.
“Although the majority of these requirements have been in place for several years, achieving and reporting certifying compliance with data privacy and security requirements in healthcare is still very much a work in progress,” the authors wrote.
A different study found that healthcare organizations increasingly are turning to software solutions to protect their data. According to a survey of 328 privacy professionals, 33 percent have deployed privacy program assessment and management software, while another 32 percent either plan to purchase the technology or have already purchased but have yet to implement the software, Health Data Management reported.
“Although security budgets remain larger, we’re seeing a marked shift in privacy teams’ influence over technology purchasing decisions,” Chris Babel, CEO of TrustArc, told the publication. “This trend confirms what we’re seeing among our customers; that they have a growing need for technology solutions to help them manage privacy compliance on a global basis.”