EMR and HIPPA: “This story made me think of two things:
1. Why is PHI being stored on the laptop in the first place? I wish I could find out if there was an EMR involved. If there was, then the EMR should be storing all of the patient information on the server and none of that data should be stored on the laptop. So, if it gets stolen there’s no breach. That’s the beauty of an EMR these days. There should be no need for this to happen.
2. There’s some really cool technology that’s been coming out in recent laptops that will allow you to remotely wipe out the laptop if it ever gets connected to a network. Basically, once your laptop is stolen you report it stolen and they start tracking it down kind of like they do with stolen cars (same people from what I understand).” – The story associated with this blog goes on to say that “Patient names, treatment dates, short medical treatment summaries and medical record numbers were stored on the computer.“ This wouldn’t have been an issue if all the patient information was stored in the “cloud” and viewed and updated via a secure connection when necessary. Security aside, data stored on a local hard drive increases the chance for lost or duplicate data. Anyway you slice it, this was a bonehead move.