RA federal court in Illinois has ruled against a health information exchange contractor that had planned to destroy patient data as it goes out of business, according to Law360.
MCHC-Chicago Hospital Council, a nonprofit that runs the MetroChicago Health Information Exchange, had sued Sandlot Solutions Inc. over plans to destroy all client data within 24 hours of providing a copy to MCHC.
MCHC sued to prevent that, saying it wasn’t enough time to verify that the data was usable and not corrupted. Sandlot also had planned to destroy audit trail and node authentication logs, which track things like when a patient’s file is accessed. Sandlot had not provided copies of those logs, and MCHC argued that destroying them could prevent it from complying with audit control requirements under HIPAA.Read More On www.fiercehealthit.com
Categories HIE policies & guidelines