Your Photocopier Can Get You in Legal Troubles!

Scroll down to read more!

Your Photocopier Can Get You in Legal Troubles!

Scroll down to read more!

Table of Contents

Your Photocopier Can Get You in Legal Troubles!

Okay – We’re not talking about that kind of trouble. 

The Health Insurance Portability and Accountability Act (HIPAA) requires that protected personal information be protected. Just about everyone knows that an employee’s health information needs to be in a separate file under lock and key with restricted access. (If you don’t then you and I need to talk.) Most everyone knows that computers that store that information also need to be protected and the data needs to be secured. But did you know your copier can get you in trouble?

Digital hard drives

In just about every office out there paperwork with protected personal information gets copied on a daily basis. We not only copy medical information to be filed, but we also copy various forms of identification such as passports, drivers’ licenses and social security cards. Just to be clear there is nothing wrong with doing this and most of us are pretty careful in what we do with that paperwork.

However, did you know that copiers are much more sophisticated than they have been in the past? The not only reproduce everything you want copied but it also stores all those images on a hard drive. Right about now you may be thinking “OMG what have I copied on there?” (Yep that image of your posterior is stored there or at least someone’s may be.)

Why this is important

According to Stacey Borowicz and Simi Botic, attorneys with Dinsmore & Shohl LLP, this lack of knowledge about a copier hard drive cost one company over $1.2 million in fines. In their article Is Your Photocopier HIPAA Compliant? they related the story of Affinity Health Plan, a not-for-profit managed care plan, that failed to realize that all the information they copied was stored on the copier hard drive. Unfortunately for Affinity the copier they used was a leased machine. And as often happens with leased machines they will be returned and traded out for a newer model.

Unfortunately by doing this return without clearing the hard drive they exposed all the information that was on that drive and the drives of other leased machines as well. They exposed the records of 100,000 plus people. Affinity reported this breach to the Department of Health and Human Services’ Office of Civil Rights (“OCR”), which then proceeded to investigate.

What they found was a failure to follow HIPAA procedures about accessing potential security risks and having appropriate policies and safeguards in place, such as wiping a hard drive clean before you return the copier machine.

What about you?

Obviously this type of violation has much greater impact on healthcare providers, but each company should be aware of this risk. Are you aware of the capacity of your copier for storing information? What other devices today may have this sort of storage capacity? You need to develop a policy to prevent unauthorized retrieval of information on these devices and include a process to clean the hard drive of any device before it leaves your building. You don’t really want to explain to your employees how their information got leaked.

Did you like this post? Share it!

A Word From Our Sponsors

Ads help make Workology resources free for everyone. We respect your privacy. To see our Privacy Policy click here.

Recommended Posts

27 Companies Who Hire Adults With Autism

List of companies who hire and employ adults who are neurodiverse. ...

The Costs of Form I-9 Software

Read the complexities of Form I-9 compliance software costs. We break down pricing structures, features & benefits to help HR professionals....

Episode 415: Registered Apprenticeship Programs in the Clean Energy Sector With Dr. Janell Hills

In this episode, we interview Dr. Janell Hills from IREC about developing registered apprenticeship programs in the clean energy sector....
Sanjay Sathé, Founder & CEO of SucceedSmart, is no stranger to disrupting established industries.

Q&A With Sanjay Sathé, Founder & CEO of SucceedSmart

Sanjay Sathé, Founder & CEO of SucceedSmart, is no stranger to disrupting established industries. ...
supporting caregivers: the sandwich generation at work

Supporting Caregivers: The ‘Sandwich Generation’ at Work

Are companies doing what they should to support employees who become caregivers? ...

Recruiting Reimagined: How Specialized Software Strengthens Hiring in 2024

Even during fluctuating economic crosswinds, the war for talent remains white-hot across most industries. To efficiently staff crucial openings while staying within strained budgets,...

Checkout Our Products

Ads help make Workology resources free for everyone. We respect your privacy. To see our Privacy Policy click here.

More From Workology

Recruiting Reimagined: How Specialized Software Strengthens Hiring in 2024

Click on read more to open this post on our blog.
supporting caregivers: the sandwich generation at work

Supporting Caregivers: The ‘Sandwich Generation’ at Work

Are companies doing what they should to support employees who become caregivers?
Sanjay Sathé, Founder & CEO of SucceedSmart, is no stranger to disrupting established industries.

Q&A With Sanjay Sathé, Founder & CEO of SucceedSmart

Sanjay Sathé, Founder & CEO of SucceedSmart, is no stranger to disrupting established industries.

Episode 415: Registered Apprenticeship Programs in the Clean Energy Sector With Dr. Janell Hills

In this episode, we interview Dr. Janell Hills from IREC about developing registered apprenticeship programs in the clean energy sector.