Recent Michigan Medicine HIPAA Breaches

June 22, 2018

Stock photo of woman pointed to glowing lock icon

Please be advised that recent Breaches have happened at Michigan Medicine that involved research subjects’ identifiable patient information (Protected Health Information/PHI under HIPAA) stored on personally-owned laptops that were not encrypted and were subsequently lost or stolen. Use of an unencrypted, personally-owned laptop to store research data involving PHI is a violation of UMHS policy, IRB approval for research, and federal regulations including HIPAA. Because of these incidents, Michigan Medicine is notifying more than 850 patients whose information was involved, along with the Media and the Federal Government.

REMINDER: UMHS Policy 01-04-502, Security of Portable Electronic Devices and Removable Media requires encryption of all devices, including personally-owned laptops, that are used to store, transfer, or access sensitive clinical and research data.

In addition to laptops, this policy applies to all other devices such as:

Smartphones
Tablets
Media players
USB flash drives
External disk drives
Memory cards (SD cards)
CDs, DVDs and other electronic magnetic or optical storage media

It is also the researcher’s responsibility to store sensitive data in appropriate locations based on their research protocol as approved by the IRB. If laptops are not approved to store sensitive research data per the IRB-approved research protocol, then DO NOT store sensitive data on a laptop, whether you own it or if it was issued to you by Michigan Medicine.

Violations of this policy result in disciplinary action, up to and including termination.

Enroll All Your Devices in AirWatch:

Enroll your smartphone, tablet, or personally-owned laptop in AirWatch if you use the device(s) to access or store any sensitive information. AirWatch provides the encryption and security controls that are necessary to ensure your device meets the requirements of UMHS Policy 01-04-502.

AirWatch is supported on multiple platforms, including iOS, Android, Mac, and Windows devices. See the Knowledgebase for more information on supported platforms.

Need Help?

HITS Service Desk staff are available to help you with AirWatch and other encryption-related questions.

Click the online customer service portal (help.medicine.umich.edu)
Call the HITS Service Desk 24/7 at 734-936-8000
Visit one of the walk-in "Help Me Now" sites (michmed.org/HMN-locations)

Events & Workshops

CTSO Noontime Knowledge: An Introduction to Mixed Methods Research

This session, presented by the Clinical Trials Support Office, will provide researchers with the basics of mixed-methods research from a presentation led by Justine Wu, M.D., MPH, Mixed Methods...

April 21, 2023
RFI Series: The What, Why, and How of Protocol Documents

Join the Clinical Trials Support Office for part 2 of the Research Foundations for Investigators (RFI) series, The What, Why, How of Protocol Documents. Participants will learn the basics of protocol...

May 19, 2023
RFI Series: Introduction to Data Management – The Pitfalls of Excel

Join the Clinical Trials Support Office for part 3 of the Research Foundations for Investigators (RFI) series, Introduction to Data Management – The Pitfalls of Excel, presented by Peter Higgins, M.D...

June 16, 2023

News

New Onboarding Resource for Research Administrators

Orienting research administrators new to Michigan Medicine is a collaborative, and sometimes daunting, effort. All the training and resource materials can be hard for someone to find on their own -...

March 20, 2023
New M-CTSU Recharge Rates Effective February 1, 2023

New recharge rates will go into effect for all studies using the M-CTSU after February 1, 2023. These rates will be included in any budgets that have not yet been finalized. No changes have been...

January 27, 2023
Research Pharmacy Updates

New Recharge Rates effective February 2023 Effective February 1, 2023, new recharge rates will be applied for all studies utilizing Research Pharmacy services. Click here to view the updated rates...

January 26, 2023

Edited By: mhayward@umich.edu

Last Updated: June 25, 2018

Enterprise

Main menu

You are here

Recent Michigan Medicine HIPAA Breaches

Enroll All Your Devices in AirWatch: