Privacy with Health Information Technologies: What Story Do Data Breaches in US Tell Us?

Sylvestre Uwizeyemungu, Placide Poba-Nzaou

2020

Abstract

Over the last decades, health policy makers have encouraged healthcare organizations to leverage health information technology (HIT) for improving the accessibility, the quality, and the efficiency of health service delivery. The adoption of HIT has contributed to the digitization of health data, which has made these data vulnerable to information technology (IT) related security breaches. Based on data published by the US Department of Health and Human Services (DHHS), we analyze the portrait of health data breaches in the USA from 2009 to 2018 in order to figure out whether there are clear patterns of breach that stand out. In addition to descriptive statistics characterizing health data breaches, this study suggests three well-separated patterns of these breaches: (1) breaches mainly related to hacking / IT incident, (2) breaches due to unauthorized access / disclosure, and (3) breaches due to theft. All these patterns of breaches have different implications regarding priorities for health IT security and privacy professionals. However, further investigations with additional data are needed to fully comprehend the phenomenon of health data breaches and their implications in terms of IT security and privacy.

Download


Paper Citation


in Harvard Style

Uwizeyemungu S. and Poba-Nzaou P. (2020). Privacy with Health Information Technologies: What Story Do Data Breaches in US Tell Us?. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-399-5, pages 131-141. DOI: 10.5220/0008977301310141


in Bibtex Style

@conference{icissp20,
author={Sylvestre Uwizeyemungu and Placide Poba-Nzaou},
title={Privacy with Health Information Technologies: What Story Do Data Breaches in US Tell Us?},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2020},
pages={131-141},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0008977301310141},
isbn={978-989-758-399-5},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Privacy with Health Information Technologies: What Story Do Data Breaches in US Tell Us?
SN - 978-989-758-399-5
AU - Uwizeyemungu S.
AU - Poba-Nzaou P.
PY - 2020
SP - 131
EP - 141
DO - 10.5220/0008977301310141