Some healthcare administrators and executives consider the notice of privacy practices (NPP) another government administrative burden. From a privacy perspective, however, the NPP is not a waste of time.
The question today for healthcare facilities isn't "does your facility use social media?" It's "who is using social media, for what purpose, and what policies govern its use in your organization?"
Paula Moran, MEd, and Jennifer Edlind, JD, CHC, know what they're talking about when they say having an incident response team in place when a data breach occurs is important. Moran is privacy and security manager at Massachusetts General Hospital (MGH) in Boston. Edlind is director of privacy and compliance operations at University Hospitals Health System (UH) in Cleveland.
