Filed under: Data Governance, Data Quality, Events, Identity Resolution, Master Data
I have a friend in the neighborhood, and coincidentally he shares a name with another person who also lives in our neighborhood. As a joke, while I refer to my friend by his name (say for argument’s sake it is “Arnie Hollingsworth”), I refer to the other guy as “The Other Arnie Hollingsworth.”
You are probably familiar with the fact that over the past few years there have been some new laws passed regarding health care reform. One law in the HITECH legislation requires “HIPAA covered entities and their business associates to provide notification following a breach of unsecured protected health information.” What this effectively means is that if there is a case where some amount of protected health information (PHI) is inadvertently released, the organization that allowed that release is mandated to “provide notification of the breach to affected individuals, the Secretary (of Health and Human Services), and, in certain circumstances, to the media.”
In other words, you lose protected data and you have to report it to the Department of Health and Human Services.