SSRN Home Search and Download Papers Browse Abstract and Paper Submission Subscribe to Networks View Briefcase Top Papers Top Authors Top Institutions

 

Abstract

  
 

Footnotes (326)

Beta

 		 


 


Download | Share | Email | Add to Briefcase | Buy Hard Copy

In Sickness, Health, and Cyberspace: Protecting the Security of Electronic Private Health Information

Sharona Hoffman
Case Western Reserve University - School of Law

Andy Podgurski
Case Western Reserve University


Boston College Law Review, Vol. 48, No. 2, March 2007
Case Legal Studies Research Paper No. 06-15

Abstract:     
The electronic processing of health information provides considerable benefits to patients and health care providers at the same time that it creates serious risks to the confidentiality, integrity, and availability of the data. The Internet provides a conduit for rapid and uncontrolled dispersion and trafficking of illicitly-obtained private health information, with far-reaching consequences to the unsuspecting victims. In order to address such threats to electronic private health information, the U.S. Department of Health and Human Services enacted the HIPAA Security Rule, which thus far has received little attention in the legal literature. This article presents a critique of the Security Rule from both legal and technical perspectives. We argue that the Rule suffers from several defects relating to its narrow definition of "covered entities," to the limited scope of information it allows data subjects to obtain about their health information, to the vagueness and incompleteness of the Rule's standards and implementation specifications, and to the lack of a private cause of action. The article explores the difficult problem of crafting static regulations to adequately address rapidly changing computer and communications technologies and associated security threats to private health information. In addition, it develops detailed recommendations for improving safeguards for electronically processed health records.

Keywords: Cyberspace, Health Information, Privacy, HIPAA Security Rule, Administrative Law, Computer Security, Internet, Software

JEL Classifications: K23, K32

Accepted Paper Series

Date posted: September 20, 2006 ; Last revised: November 16, 2009

Suggested Citation

Hoffman, Sharona and Podgurski, Andy, In Sickness, Health, and Cyberspace: Protecting the Security of Electronic Private Health Information (November 13, 2009). Boston College Law Review, Vol. 48, No. 2, March 2007; Case Legal Studies Research Paper No. 06-15. Available at SSRN: http://ssrn.com/abstract=931069


Export to: Export Citation What's this?

Contact Information

Sharona Hoffman (Contact Author)
Case Western Reserve University - School of Law ( email )
11075 East Boulevard
Cleveland, OH 44106-7148
United States
216-368-3860 (Phone)
Andy Podgurski
Case Western Reserve University ( email )
10900 Euclid Ave.
Cleveland, OH 44106
United States
Feedback to SSRN (Beta)


Paper statistics
Abstract Views: 732
Downloads: 144
Download Rank: 58,616
Footnotes: 326
People who downloaded
this paper also downloaded:
1. Securing the HIPAA Security Rule
By Sharona Hoffman and Andy Podgurski

© 2009 Social Science Electronic Publishing, Inc. All Rights Reserved. Terms of Use  Privacy Policy
This page was served by apollo7 in 0.125 seconds.