It’s that time of year again! Parents are scrambling to get things ready for the kids to return to school. At the same time, many are savoring the idea of having the house to themselves for a few short hours in the day. For those of us who aren’t doing the back to school scramble, it’s the end of summer and a time to think about what’s next.

In celebration of the back to school season, MT Tools Online is offering a 25% discount on all E-Courses as well as the sample policies and procedures. Ready to get going toward your goal of being sure you understand all about HIPAA and are compliant? Take advantage of this savings to assist you in reaching this goal now! To take advantage of the special pricing, go to the HIPAA Training page, select which package you would like, sign up, and use the discount code “school” when you make your purchase.

Use the back to school time as a time to plan for YOUR future. There’s no better time to make the move toward what you need related to HIPAA and the HITECH Act!

I ran across an interesting report this week related to data breaches and their cost to an organization. The 2009 Ponemon Institute Benchmark Study was released and makes for some fascinating and scary information. The study covers many different industries where breaches occurred in 2009, with 45 participants, some of which are healthcare entities. I encourage you to read the entire report as I found it quite interesting.

With breach notification now required if an organization has a breach, it's important to take steps to protect yourself from this occurring. So what if this happens? What will it cost? Here are some interesting points from the study:

• The average cost of a breach is $204 per record involved. In the healthcare industry, however, this cost rises to $294 per record, second only to the pharmaceutical industry at $310.
• The average organizational cost in 2009 was $6.75 million. The most expensive cost was $31 million.
• The study looked at what percentage the cost of lost customers is due to a breach. This has risen to 3.7% and is listed as the main cost when you have a breach. It is interesting to note that, while the average is 3.7%, in health care that number actually increases to 6%, which is equal in the healthcare, communications, and pharmaceuticals industries.
• Another important thing to note is that 42% of breaches were listed as due to an external factor, such as using an outsourcing company to provide services. In the healthcare industry, this number rises to 60%.
• Of the breaches studied, 36% were related to lost or stolen laptop computers or mobile devices. Do you now see a value in being sure your jump drives and external hard drives are encrypted?
• Also reported was the average cost when the breach was related to a mobile device: $224 compared to $193.
• Do you have a compliance officer for your organization who manages the process? If not, it may be a good time to rethink your strategy. Those organizations who have one had an average cost per record of $156.73 versus a cost of $235.51 for those who do not.

While a mere $200 may not sound like a lot, remember this is per record breached. Just one breach that involves 500 patients would have a cost of around $102,000. Many of the 131 breaches reported on the HHS website have many more records than 500.

Be sure your compliance program is protecting you from breaches that could end up costing thousands, or millions, of dollars. It is not a place to skimp on in your organization.

Remember, if you are an independent contractor, this weekend is your last opportunity to get the HIPAA4MT sample policies and procedures at a significant discount!