April 20, 2021

Volume XI, Number 110


April 19, 2021

Subscribe to Latest Legal News and Analysis

Anthem Data Breach: A Dramatic Reminder about Data Security

News of the data breach suffered by Anthem continues to dominate the news.  And, further raising the stakes, class action lawsuits from individuals whose information has potentially been compromised are beginning to roll into courthouses across the country (California, Alabama, Indiana, Georgia, California [again], and California [again]).  Because health care data is such a hot commodity on the black market, hackers often target health care providers and other entities who have health care data.  Data breaches aimed at health care information were way up last year, and attempted data breaches are only expected to increase.

Encryption, which Anthem didn’t have according to news reports, goes a long way toward securing this sensitive data.  However, even with encryption, it is worthwhile for  providers large and small to review existing data security/breach response policies or institute new ones targeted at current technologies.   Considerations include:

  • Organize your data network and know what information you have and where it is (including technologies like cloud computing, printer/copiers, and employees’ mobile devices);

  • Update encryption, password, and remote access policies and ensure they are followed;

  • Perform a risk assessment (and document it);

  • Create a protocol to monitor unauthorized attempts to access data;

  • Develop a plan to respond to a data breach, including technical, legal, and business continuation considerations;

  • Plan for disclosures to employees, shareholders, individuals effected, media, and/or federal regulators as required

  • Review state laws that may apply for additional reporting or safeguard requirements

© Copyright 2021 Squire Patton Boggs (US) LLPNational Law Review, Volume V, Number 43



About this Author

Emily E. Root, squirepattonboggs, anti-kickback, healthcare lawyer
Senior Associate

Emily Root focuses her practice on assisting healthcare providers and insurers on identifying and responding to compliance, regulatory and litigation risks and representing those clients in state and federal regulatory proceedings, as well as state and federal courts. Emily advises clients on compliance with a wide variety of regulatory requirements, including the Stark law, Anti-Kickback Statute, False Claims Act. She also guides clients through investigation and, if necessary, self-disclosure of potential fraud and abuse, regulatory or compliance violations, and the...

1 614 365 2803