Healthcare Compliance Training and Certification

HIPAA News

Paper Records Missing from Storage Facility According to Illinois Physicians Network

by | Dec 17, 2017

Many data breaches have been reported by HIPAA-covered entities, involving the loss or theft of physical records, in the past two months. In November, seven violations  involving paper records were made known to the HHS’ Office for Civil Rights, and another five incidents were made known the month prior to that.

Now another incident has been submitted in Illinois. Franciscan Physician Network of Illinois and Specialty Physicians of Illinois LLC have found that payment records that were kept in a storage center are missing. The storage center in Chicago Heights was used by both physician groups.

The loss/theft of the paper files is one of the largest violations of the past few months, potentially affecting as many as 22,000 people. The payment records were from the time period(s) 2015-2017 and 2010.

The boxes of paper files were confirmed as missing from their location on November 21, 2017, with notifications sent on December 13, 2017. The loss of files was found following a routine records request, but the records could not be found. An inventory of the storage facility was completed, and 40 boxes of files were seen to be missing and potentially stolen.

The records only included a small amount of patient information related to payments received, and included names and addresses, types of payment, payment amounts, office location, and the last four digits of credit card details. For a small number of patients who settled their bill by check, their routing number, bank account number and Social Security number were also included in the files.

A number of the records from 2010 may also have included insurance ID details, facility-assigned account details, dates of birth, type of visit, diagnoses, provider names and addresses, dates attended, descriptions of services provided, and procedure codes.

While the files may have been stolen, foul play is not suspected in this instance. As a precautionary measure, those impacted by the incident have been offered the chance to avail of two years of identity theft protection services for free.

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

COMPREHENSIVE HIPAA TRAINING

Ryan Coyne

Ryan Coyne is a results-driven leader in the healthcare compliance industry, specializing in regulatory compliance, compliance training, and assisting healthcare organizations and business associates in achieving and maintaining compliance. With a deep knowledge of healthcare regulations and a keen understanding of the challenges faced by the industry, Ryan has developed a reputation as a trusted advisor and advocate for ethical and compliant practices in healthcare. Ryan has successfully advised and guided numerous healthcare organizations, business associates, and healthcare professionals on achieving and maintaining compliance with regulatory training requirements. Ryan's professional focus is using his in-depth expertise and leading a world class team of subject matter experts at ComplianceJunction in regulatory compliance to help organisations navigate the complex landscape of ensuring staff adhere to healthcare regulations. You can connect with Ryan via LinkedIn and follow on Twitter

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

Comprehensive HIPAA Training

Used in 1000+ Healthcare Organizations and 100+ Universities

    Full Course - Immediate Access

    Privacy Policy