Premium
Data breach remediation efforts and their implications for hospital quality
Author(s) -
Choi Sung J.,
Johnson M. Eric,
Lehmann Christoph U.
Publication year - 2019
Publication title -
health services research
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 1.706
H-Index - 121
eISSN - 1475-6773
pISSN - 0017-9124
DOI - 10.1111/1475-6773.13203
Subject(s) - medicine , emergency medicine , medical emergency , data breach , remedial education , myocardial infarction , data quality , quality (philosophy) , health care , quality management , operations management , computer security , psychology , metric (unit) , philosophy , management system , mathematics education , epistemology , computer science , economics , economic growth
Objective To estimate the relationship between breach remediation efforts and hospital care quality. Data Sources Department of Health and Human Services’ (HHS) public database on hospital data breaches and Medicare Compare's public data on hospital quality measures for 2012‐2016. Materials and Methods Data breach data were merged with the Medicare Compare data for years 2012‐2016, yielding a panel of 3025 hospitals with 14 297 unique hospital‐year observations. Study Design The relationship between breach remediation and hospital quality was estimated using a difference‐in‐differences regression. Hospital quality was measured by 30‐day acute myocardial infarction mortality rate and time from door to electrocardiogram. Principal Findings Hospital time‐to‐electrocardiogram increased as much as 2.7 minutes and 30‐day acute myocardial infarction mortality increased as much as 0.36 percentage points during the 3‐year window following a breach. Conclusion Breach remediation efforts were associated with deterioration in timeliness of care and patient outcomes. Thus, breached hospitals and HHS oversight should carefully evaluate remedial security initiatives to achieve better data security without negatively affecting patient outcomes.