Vol XIV: Ch 4 PII and PHI’s Privacy in a Dynamic Hyper-Convergent World
From the Book: The Refractive Thinker® Vol XIV: Health Care: The Impact on Leadership, Business, and Education.


Advanced monitoring of Internet activities could help to reduce exposures to threat vectors and increase the ability of secure exchange of personally identifiable information (PII) over the internet in digital-age. A PII refers to personal health information for identification of an individual, “stored or transmitted in any medium, including information related to the Patient’s health, the provision or healthcare, or billing for healthcare,” [in contrast with] “PII and PrHI” (Avancha, Baxi, & Kotz, 2012, pp. 44-45). A breach in individuals’ PII could expose vulnerable subjects to threat actors and risks of harm (Ferrillo, 2015). The top senior executives’ ability to judge content complements host and network-based intrusion detection systems, to monitor the transmission of information across networks, with an emphasis to protect data against a breach. Network firewalls with intrusion detection systems could sense and detect anomalies to build resiliency against threats for securing systems, in addition to educating healthcare organizations’ C-suite in cybersecurity to prepare officers to handle acts of cyber-attack (Duffy, 2015). The future of health information technology (HITECH) in information-age depends on a cyber-secure and aware corporate-wide information exchange due to hyper-connectivity of over 20 billion objects, which connect over the internet. Perfect security is not achievable within the hyperconnected cyber-world and resiliency to risks of threats is the best approach to risk management, in which advanced persistent threats (APT) move through networks to collect sensitive information (Ferrillo, 2015).