The trusted source for
healthcare information and
Two data breaches a year is typical for hospitals
These are more results from the "Benchmark Study on Patient Data Security Practices," conducted by the Ponemon Institute in Traverse City, MI:
Sixty percent of organizations in the study had more than two data breaches in the past two years. The average number for each participating organization was 2.4 data breach incidents.
The average number of lost or stolen records per breach was 1,769. A significant percentage of organizations either did not notify any patients (38%) or notified everyone (34%) that their information was lost or stolen.
The top three causes of a data breach were: unintentional employee action, lost or stolen computing devices, and third-party errors.
Forty-one percent discovered the data breach as a result of a patient complaint.
Sixty-three percent of organizations say it took them between one to six months to resolve the incident.
Fifty-six percent of respondents have either fully implemented or are in the process of implementing an electronic health records system. The majority (74%) of those who have an EHR system say it has made patient data more secure.