"EHR giant Epic, together with a handful of healthcare providers, has filed a federal lawsuit aimed at stopping what it calls a scheme to exploit and monetize patient medical records without consent. The complaint, filed January 13, claimed that certain companies improperly accessed sensitive health information and then sold or marketed that data for profit, rather than using it for legitimate medical care."
"The lawsuit also claimed that the defendants inserted "junk" information into records to hide their activity and give the appearance of genuine care, which in turn risked patient safety and wasted clinician time. When one fraudulent entity was exposed, the same actors allegedly created new companies to continue the same conduct, operating "like a Hydra," according to the complaint. The lawsuit alleged violations of HIPAA, as well as other federal and state privacy protections."
Epic and four healthcare systems (Trinity Health, UMass Memorial Health, Reid Health and OCHIN) brought a federal lawsuit accusing Health Gorilla and affiliated companies of improperly accessing and monetizing nearly 300,000 patient medical records. The complaint alleges the defendants created fictitious providers, shell websites and fake provider IDs to make records requests appear treatment-related while diverting data for marketing and other non-treatment uses. The defendants allegedly injected "junk" information to conceal their activity, risking patient safety and wasting clinician time. The suit asserts violations of HIPAA and other federal and state privacy protections and warns of threats to interoperable health-data systems.
Read at MedCity News
Unable to calculate read time
Collection
[
|
...
]