Experts discuss technology and privacy protections at 2nd International Summit on the Future of Health Privacy

See full story at: HIPAA remains in play as technology outpaces privacy protections

Speakers from the 2nd International Summit on the Future of Health Privacy were interviewed in this article about their ideas and opinions concerning the outpacing of privacy protections by technology. Because technology is being invented quicker than privacy laws can be written and imposed, people everywhere are at risk of having their private medical records used without their knowledge and consent. On June 6-7, over 50 speakers and 300 participants met up to discuss the issues brought about by such technological advances at the 2nd International Summit on the Future of Health Privacy. To learn more about the Health Privacy Summit, please visit HealthPrivacySummit.org.

“Experts assembled on June 6 in Washington for a panel discussion on electronic medical records and privacy noted that HIPAA provides only a minimum standard for safeguards, not a template for best practices. Panelists at the International Summit on the Future of Health Privacy added that the stakes are high when it comes to EMRs and privacy.

“Electronic technology is a game-changer, legally, because the damage that can be done to someone is perpetual and the damages that can be awarded are incalculable,” said James Pyles, co-founder and principal of the law firm of Powers, Pyles, Sutter & Verville….

…Joy Pritts, chief privacy officer for the Office of the National Coordinator for Health Information Technology, said the main problem is technology is moving faster than privacy laws can be written

“I approach this in a simplistic way,” Pritts said. “I look to see, do you have a right to privacy for your health information? So far, the courts say you do. The tort laws say you do. Standards of professional ethics of nearly every segment of the medical profession say you do. The HIPAA privacy rule does not say that at all.”"

Learn more about the Health Privacy Summit here.

Top Experts Discuss Privacy Risks at 2nd International Summit on the Future of Health Privacy

Patient Privacy Rights and Georgetown University Law Center’s O’Neill Institute for National and Global Health Law Host Event

Psychiatry Patient’s Story Highlights Growing Threat to Privacy

WASHINGTON–(BUSINESS WIRE)– When a lawyer named “Julie” sought psychiatric treatment in Boston, she never imagined that the notes of sessions with her therapist would be digitized and made available to thousands of doctors and nurses—even dermatologists and podiatrists with no conceivable need for such private records. But that is precisely what happened. “Personal details that took me years to disclose during therapy are being shared throughout my medical network, against my will,” Julie says. “It’s destroyed my trust with my doctors.”

Julie will tell her story for the first time at the 2nd International Summit on the Future of Health Privacy, to be held in Washington, DC, on June 6-7. Sponsored by Patient Privacy Rights, the nation’s leading health privacy watchdog, and Georgetown University Law Center’s O’Neill Institute for National and Global Health Law, the Summit will explore the often-alarming privacy implications of the nation’s race to digitize patient medical records.

“Every state requires patient permission before sensitive mental health records can be shared with other doctors. But Julie found that hundreds of pages of intimate records, some detailing her abuse as a child, were open to the entire staff of her Boston-based healthcare system,” says Dr. Deborah Peel, founder of Patient Privacy Rights. “Julie is an example of how major electronic health records systems can actually strip patients of their privacy rights. Her tragic story highlights the need for the Privacy Summit—to shine light on these abuses and find solutions to protect patient privacy.”

40 Health-Privacy Experts Drive Debate:

More than 40 health-privacy experts from around the globe will gather for the Summit, including top U.S. government officials and leading CEOs, physicians and academics, along with several hundred live and virtual attendees. Speakers will discuss new policies including a Health Privacy Bill of Rights, data exchanges, secondary uses of health data and social media platforms that threaten patient privacy. In addition, the founder of Harvard’s Data Privacy Lab will announce the launch of a yearlong project, the first of its kind, to map the hundreds of secret organizations and agencies where private medical data is sold and shared in the United States.

Summit organizers also will announce the “The Best Privacy Technologies of 2012,” and companies will demonstrate new products that enhance patient control of personal health data.

Louis D. Brandeis Privacy Award:

To kick off the Summit, Patient Privacy Rights will honor the first-ever recipients of the Louis D. Brandeis Privacy Award. The privacy watchdog group will recognize Congressman Joe Barton (R-TX) and Congressman Ed Markey (D-MA) for their roles as leading congressional privacy advocates. And Alan Westin, Columbia University’s Emeritus Professor of Public Law and Government, and Ross Anderson, the University of Cambridge’s Professor in Security Engineering, will be honored for their groundbreaking work on consumer data privacy and security.

WHAT: The 2nd International Summit on the Future of Health Privacy
WHEN: June 6-7th, 2012
WHERE: Georgetown University Law Center
600 New Jersey Avenue, NW. Hart Auditorium, McDonough Hall
Washington, DC 20001

REGISTRATION: http://www.healthprivacysummit.org/d/3cq92g/4W

AGENDA: http://www.healthprivacysummit.org/d/3cq92g/6X

SPEAKERS: http://www.healthprivacysummit.org/d/3cq92g/6K

FOLLOW US ON TWITTER: @PrivacySummit

SPONSORS/PARTNERS: Accenture, CA Technologies, Dell, e-MDs, FairWarning®, Harvard Data Privacy Lab, IDExperts, Jericho Systems, Microsoft, PwC, RTI International, Telemedicine and Advanced Technology Research Center (TATRC), The O’Neill Institute at Georgetown Law Center, The University of Cambridge Computer Laboratory, The University of Texas School of Information

ABOUT PATIENT PRIVACY RIGHTS: Patient Privacy Rights is the nation’s leading bipartisan health privacy organization and leading consumer voice for building ethical, trustworthy healthcare IT systems. For more information, visit http://patientprivacyrights.org

Contact:
Keith Blackman, 202-730-5753
keith@blackmanmediasolutions.com
or
Jim Popkin, 202-686-6699
jim.popkin@sevenoaksmedia.com

Office of the National Coordinator of Health IT, HHS, Announces PPR Summit

To learn more visit Health Privacy Summit and HealthIT.

The Second International Health Privacy Summit is quickly approaching (June 6-7). Our keynote speaker, Farzad Mostashari, MD, ScM is the National Coordinator for Health IT and will be giving a wonderful presentation on “Creating a Culture of Privacy and Security Awareness.” The Office of the National Coordinator for Health IT has given great support to this event and will be participating as well. Here’s what they have to say about the Health Privacy Summit:

June 6-7
2nd International Summit on the Future of Health Privacy

Over 40 leading health-privacy experts from around the globe will gather in Washington, DC for the 2nd International Summit on the Future of Health Privacy to discuss privacy and security issues raised by emerging health technologies. Experts from the U.S. government, the private sector and academia will explore new laws and regulations, data exchanges, secondary uses of health data and social media platforms and how they relate to the privacy and security of patient health information.

National Coordinator for Health Information Technology – Farzad Mostashari, MD, ScM – will kick off this year’s event with a keynote presentation on “Creating a Culture of Privacy and Security Awareness.”

See the full list of speakers at http://www.healthprivacysummit.org/d/3cq92g/6K .

* Agenda: http://www.healthprivacysummit.org/d/3cq92g/6X
* Registration: http://www.healthprivacysummit.org/d/3cq92g/4W FREE to attend or watch live online!

Health records lost, stolen or revealed online

From the Chicago Tribune Article: Health records lost, stolen or revealed online

“Almost a decade after a new law went into effect to strengthen health privacy protections, the number of breaches of patient records and databases across the U.S. suggests that personal health information is not as private or secure as many consumers might want or expect.

Since fall 2009, more than 400 large health care breaches affecting at least 500 people and more than 50,000 smaller breaches have been reported to the federal government.

One of the largest unauthorized disclosures in recent history of medical records and other private information happened in September, when computer tapes were stolen that contained data on almost 5 million people enrolled in TRICARE, the nation’s health program for military members, their families and retirees.

Some breaches have resulted in personal information being revealed online. The names and diagnosis codes of almost 20,000 emergency room patients at Stanford Hospital in Palo Alto, Calif., were posted on a commercial website for nearly a year before it was discovered in September and taken down…

Dr. Deborah Peel, founder and chair of Patient Privacy Rights, a consumer group, would like to see more help for those whose information is breached and tougher punishment for those responsible. The BlueCross BlueShield of Tennessee settlement amounted to “roughly a dollar per breach record, which is nothing,” she said.

Harvard’s Data Privacy Lab Launching HRB

We are proud that one of our Board of Directors of Patient Privacy Rights, Latanya Sweeney, PhD, is leading this major project that puts patients in control of the collection and use of sensitive personal health information in a very secure ‘health bank’. No information can be disclosed without the patient’s informed consent.

Link to Harvard’s Data Privacy Lab
Link to Article in Healthcare IT News

Health banks can enable health information to exchange data for treatment and other uses WHEN patients say so, instead of the way today’s electronic systems operate: millions of employees of “covered entities” like hospitals and hospital chains, clinics, doctor’s offices, health plans, and health clearinghouses decide when to use, sell, or disclose patients’ health information for a myriad of reasons without obtaining informed patient consent or giving advance notice.

Today, Americans have no idea which parts of their sensitive personal health data is being disclosed to whom or for what purposes. Moving to a health banking system would put patients back in charge of records, not corporate and government users, or researchers.

PPR is working with Professor Sweeney and her lab on a complementary project to map where health data flows. Patients cannot weigh the risks of using electronic health systems without knowing where their data goes and who is using it. Professor Sweeney will unveil the PPR/Harvard Data Privacy Lab Health Data Map on June 6th in DC at the 2nd International Summit on the Future of Health Privacy. Registration to attend or watch via live-streamed video is free.

Re: Utah’s Medical Privacy Breach – Nearing 1 Million!

The Utah Dept of Health didn’t protect close to one million patients’ sensitive health data. Utah handles health information the way 80% of the US healthcare sector does: very poorly. Weak passwords and unencrypted health information are typical. Just last November, an SAIC/Tricare data breach of 4.9 million unencrypted records was reported.

The US healthcare industry has ignored federal law requiring encryption since 2005. Encryption is well-known to be the standard for protecting health data. But why do it if there is no enforcement and the cost of a fine or settlement is so low?

Instead of expanding electronic health records systems and exchanging millions more sensitive health records, the federal government should enforce the law and require the massive security flaws in existing health data systems be fixed. And whenever there are breaches, victims should have the technology tools to verify whether future claims are genuine to prevent medical ID theft and someone else’s record from receive credit monitoring for at least 3 years.

Learn more about the lack of health data privacy and security. Register to attend or watch the 2nd International Summit on the Future of Health Privacy, “Is there an American Health Privacy Crisis” on live streaming video at: http://www.healthprivacysummit.org

Featured Participants in 2012 DC Health Privacy Summit Announced

March 21, 2012

FOR IMMEDIATE RELEASE

Contact:
Deborah C. Peel, MD
media@healthprivacysummit.org
(512)732-0033

Featured Participants for 2012 Health Privacy
Summit at Georgetown University Announced
Rep. Joe Barton, R-Texas, to Receive Honor;
Farzad Mostashari, MD, ScM, to Deliver Opening Keynote;
Ross Anderson, PhD, FRS, Delivers Evening Keynote

Austin, TX – March 20, 2012 – Organizers today announced a noted honoreeand two outstanding keynote speakers to be featured at the Second International Summit on the Future of Health Privacy, planned for June6th-7th, 2012, at the Georgetown University Law Center in Washington,D.C.

U.S. Congressman Joe Barton will be honored as a “Privacy Hero” during the 2012 Summit’s “Celebration of Privacy” on the evening of June 6. The award recognizes Rep. Barton’s critical role as a top Congressional privacy advocate beginning with co-founding the Congressional Bipartisan Privacy Caucus with Rep. Edward Markey in 2000. His leadership ensured House support for the historic new consumer privacy and security protections in the Health Information Technology for Economic and Clinical Health (HITECH) Act.

The opening keynote will be presented by Farzad Mostashari, MD, ScM, the National Coordinator for Health Information Technology at the U.S. Department of Health and Human Services. In addition, Ross Anderson, PhD, FRS, of the University of Cambridge, U.K., will deliver the evening keynote speech.

The 2012 Summit is hosted by Patient Privacy Rights and Georgetown University’s O’Neill Institute on Global and Health Law to provide an international venue for serious discussion by experts and thought leaders on timely privacy issues. Participants will consider how patients’ privacy and civil rights are impacted by current law and regulations, health technologies and architectures (including mHealth and ‘clouds’), data exchange, secondary uses of health data, and social media platforms. The theme addressed at this year’s Summit will be: Is There an American Health Privacy Crisis?

Summit sessions will also explore health privacy through the lens of U.S. and international policies about health information privacy, such as the recent Consumer Bill of Privacy Rights and the EU Draft Regulation on the Protection of Individuals with Regard to the Processing of Personal Data and on the Free Movement of Such Data.

More About U.S. Representative Joe Barton, R-Texas
Rep. Joe Barton, a 28-year veteran member of the U.S. Congress and Chairman Emeritus of the U.S. House of Representatives’ Energy and Commerce Committee, will receive a “Privacy Hero” award at the 2012 Summit.

The award recognizes Rep. Barton’s critical role as a top Congressional privacy advocate beginning with co-founding the Congressional Bipartisan Privacy Caucus with Rep. Edward Markey in 2000. His award is for his leadership in 2009, which ensured House support for the historic new consumer privacy and security protections in the Health Information Technology for Economic and Clinical Health (HITECH) Act.

More About Farzad Mostashari, MD, ScM
As National Coordinator for Health Information Technology at the U.S. Department of Health and Human Services, Farzad Mostashari, MD, ScM, is charged with promoting the development of a secure and interoperable nationwide health information technology infrastructure.

Dr. Mostashari’s position was mandated through the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 and is focused on improving healthcare and clinical research, reducing its cost, and protecting patient health information. Previously, Dr. Mostashari held leadership positions at the New York City Department of Health, including establishing their Bureau of Epidemiology Services, and helped pioneer real-time electronic disease surveillance systems.

More About Ross Anderson PhD, FRS
Ross Anderson PhD, FRS, is a professor of security engineering at the University of Cambridge Computer Laboratory in the United Kingdom. Dr. Anderson is a researcher, writer, industry consultant, and expert in “building systems to remain dependable in the face of malice, error or mischance.”

More About the 2012 Summit Partners
Organizations partnering with Patient Privacy Rights to present the 2012 Health Privacy Summit include:

Registration for the 2012 Summit is free, but space is limited. Register now at http://www.healthprivacysummit.org. Last year’s First International Summit on the Future of Health Privacy successfully established a global public forum on the future of health privacy. Panel members included health privacy experts from academia, industry, technology, consumer advocacy, top government officials, and international experts. Learn more about the 2011 Summit here. Videos are available.

###

O’Neill Institute for National and Global Health Law
The O’Neill Institute for National and Global Health Law at Georgetown University was established in 2007 to respond to the need for innovative solutions to the most pressing national and international health concerns. For more information, visit http://www.law.georgetown.edu/oneillinstitute/about/index.html.

Patient Privacy Rights
Patient Privacy Rights is the nation’s leading bipartisan health privacy organization and leading consumer voice for building ethical, trustworthy healthcare IT systems. For more information, visit http://patientprivacyrights.org.

PPR Founder Interviewed – America in the Balance

03/14/2012: U.S. citizens are concerned about “ObamaCare”- style health care reform and the escalating loss of personal health information and privacy rights. Today’s guest is Dr. Deborah C. Peel, founder of Patient Privacy Rights. PPR was started in 2004 to speak and advocate for the patient’s right to health privacy. Peel has been chosen one of Modern Healthcare’s “100 Most Influential in Healthcare” 4 times in the last 5 years, and is the leading voice for patient control over the use of sensitive health information. Join us as we discuss HIPPA, mHealth, and the upcoming 2nd Annual International Summit on the Future of Health Privacy to be held in June 2012 in D.C.

You can listen to the article by following this link and scrolling down to the 3/14/12 show.

Press Release: Registration is Open for the 2012 Health Privacy Summit

February 28th, 2012

FOR IMMEDIATE RELEASE

Contact:
Deborah C. Peel, MD
dpeelmd@localhost:8888/pprold

(512)732-0033 or (512)820-6415

Announcing the 2nd International
Summit on the Future of Health Privacy
Is There an American Health Privacy Crisis?

Austin, TX – Patient Privacy Rights announces registration is open for the 2nd International Summit on the Future of Health Privacy: Is There an American Health Privacy Crisis?

We invite you to register for the Summit now.

The Summit will be held on June 6th-7th, 2012 at the Georgetown University Law Center. The O’Neill Institute at Georgetown Law is an academic partner, along with the Harvard Data Privacy Lab, RTI International, The University of Cambridge Computer Laboratory, and the University of Texas School of Information.

We are pleased to announce Ross Anderson PhD, FRS, will be a keynote speaker at the Summit. Anderson is a Professor in Security Engineering at the University of Cambridge Computer Laboratory as well as a researcher, writer, and industry consultant and expert in security engineering.

The 2nd International Summit on the Future of Health Privacy is the first and only international venue for serious discussions by experts and thought leaders on the urgent privacy issues raised by health technologies and architectures (including mHealth and ‘clouds’), by law and regulations, data exchange, secondary uses of health data, and social media platforms. The summit will also explore health privacy through the lens of US and international policies about health information privacy, such as the recent Consumer Bill of Privacy Rights and the EU Draft Regulation on the Protection of Individuals with Regard to the Processing of Personal Data and on the Free Movement of Such Data.

The 1st International Summit on the Future of Health Privacy successfully created the first global public forum on the future of health privacy. The panels on urgent issues included health privacy experts from academia, industry, technology, consumer advocacy, top government officials, and international experts. Learn more about the 2011 Summit here. Videos are available.

Please register early, seating is limited. Registrants will be updated regularly on the agenda and new speakers and sessions in the coming weeks.

###

Patient Privacy Rights is the nation’s leading bipartisan health privacy organization and leading consumer voice for building ethical, trustworthy HIT systems. For more information, visit http://patientprivacyrights.org.

2012 Health Privacy Summit – SAVE THE DATE!

June 6-7th, 2012
2nd International Summit on the
Future of Health Privacy
Georgetown Law Center, Washington, DC

Patient Privacy Rights is happy to announce the 2nd International Summit on the Future of Health Privacy will be held June 6-7th, 2012 at the Georgetown Law Center in Washington, DC. If you would like to receive a notice when registration is officially open, please sign up to receive updates.

Patient Privacy Rights is very excited to be working with these remarkable academic institutions & partners for the 2012 Health Privacy Summit: