Portals eNewsletters Web Seminars dataWarehouse.com DM Review Magazine
DM Review | Covering Business Intelligence, Integration & Analytics
   Covering Business Intelligence, Integration & Analytics Advanced Search

View all Portals

Scheduled Events

White Paper Library
Research Papers

View Job Listings
Post a job


DM Review Home
Current Magazine Issue
Magazine Archives
Online Columnists
Ask the Experts
Industry News
Search DM Review

Buyer's Guide
Industry Events Calendar
Monthly Product Guides
Software Demo Lab
Vendor Listings

About Us
Press Releases
Advertising/Media Kit
Magazine Subscriptions
Editorial Calendar
Contact Us
Customer Service

HIPAA Ineffective, Says Info-Tech Research Group

    Online News published in DMReview.com
February 10, 2006

With only a single conviction since its inception in 1996, the Health Insurance Portability and Accountability Act (HIPAA) is failing to meet its own mandate, says IT research firm Info-Tech Research Group.

"HIPAA is a toothless tiger," says Info-Tech analyst Ross Armstrong. "The first problem is that HIPAA is complaint driven, and complaint-driven enforcement doesn't work. The second problem is that in the one HIPAA-related conviction that has occurred, only the individual was charged, not the organization itself."

"If HIPAA is to be truly protective and useful, healthcare entities and their executives must be held accountable in the same way that Sarbanes-Oxley holds CEOs and CFOs responsible."

Armstrong also points out that U.S. agencies' commitment to enforcing HIPAA is shaky. A report from the Government Accountability Office says that the FBI could not account for all of the $379 million it was given from 2000 to 2003 in order to investigate HIPAA-related frauds. Some of the money was shifted to counterterrorism efforts, but no one could verify that the remaining HIPAA funds were properly spent.

"One conviction that netted $9,000 in penalties hardly seems worth an investment of over a third of a billion dollars," says Armstrong. "Without proper government agency oversight, it comes as little surprise that there has been only one HIPAA conviction."

Armstrong says that the enforcement of HIPAA is weak compared to other privacy laws such as the Fair Credit Reporting Act, which earlier this month fined data broker ChoicePoint $10 million for a security breach that resulted in the theft of 160,000 consumer records.

The bottom line is that for HIPAA to be effective, it needs to be enforced with the same vigor that's dedicated to other laws.


For more information on related topics visit the following related portals...

This piece has been brought to you by the DM Review Editorial staff.

E-mail This Online News E-Mail This Online News
Printer Friendly Version Printer-Friendly Version
Related Content Related Content
Request Reprints Request Reprints
Site Map Terms of Use Privacy Policy
SourceMedia (c) 2006 DM Review and SourceMedia, Inc. All rights reserved.
SourceMedia is an Investcorp company.
Use, duplication, or sale of this service, or data contained herein, is strictly prohibited.