Copyright

(c) 2010-2024 Jon L Gelman, All Rights Reserved.
Showing posts with label medical record privacy. Show all posts
Showing posts with label medical record privacy. Show all posts

Thursday, May 28, 2015

In the name of privacy...

After the massive US IRS data breach announcement this week, CMS has posted that it is establishing a more secure system for access to Medicare Secondary Payer Information. This is pretty consistent with President Obama's announcement to take Social Security Numbers off of Medicare Cards. 

The real issue is that while workers' compensation records are supposedly confidential in State systems, the Federal government has consistently neglected to insure that privacy whether be: medical records under HIPPA; by integration of  state's motor vehicle or workers' compensation records utilizing Social Security Numbers, or by Medicare Secondary Payer Act electronic data systems. 

Additionally, the Federal government will probably be mandating the reporting workers' compensation payment information, in Federal Income Returns shortly. The batting record of the IRS this week on privacy has been dismal.

Time will only tell whether workers' compensation data can actually be shielded from intruders. 

CMS announced today:

"As part of the Strengthening Medicare and Repaying Taxpayers (SMART) Act, the Centers for Medicare & Medicaid Services (CMS) will be implementing optional MFA services on the MSPRP. MFA is the use of two or more different authentication factors to verify the identity of an end user. Verified users will have access to view unmasked claim data on the Portal.

"Non debtors will still need to have a Verified Proof of Representation or Consent to Release authorization to perform actions on cases. Please note that MFA and the associated identity proofing process will be optional to portal users. Portal users may continue to use the portal without going through the MFA process but will not have the benefit of viewing un-masked data.

"MFA is scheduled to be available beginning on July 13, 2015. Updated user guides and training materials will be available on CMS.gov and within the portal upon implementation.


Tuesday, August 23, 2011

Major California Medical Record Privacy Breach Disclosed

The lack privacy of medical records in workers' compensation claims has perpetually been a huge concern for workers since Congress ignored requests to protect their dissemination. A recent disclosure in California that the medical records of 300,000 injured workers were available online to the public through a mere Google search further demonstrates that the system is failing workers.

"Identity Finder, LLC (www.identityfinder.com), a global leader in identity theft prevention and data loss protection (DLP), discovered that a website exposed documents containing hundreds of individuals health information and database files containing approximately 300,000 names and social security numbers of California residents who applied for workers' compensation benefits. Identity Finder notified the websites owners, Southern California Medical-Legal Consultants, Inc. (SCMLC), of the breach on May 11, 2011 and SCMLC restricted access to all files within minutes of notification."

Over the last two decades the erosion of the privacy of injured workers medical records has continued unabated. Workers who are injured on the job should not have their medical records published without restriction or limitation. Injured workers should not be subject to public humiliation and embarrassment through disclosure of their medical records. It is time for Congress to revisit the issue.