In Reply We thank Drs Fabbri et al for their insightful comments. We would like to clarify several points that might help readers interpret our study.
We agree with Drs Fabbri et al that the “500 affected individual threshold” established by the US Department of Health and Human Services (HHS) for public reporting makes it more likely to identify data breaches in large hospitals. We acknowledged this as an important limitation in the letter.1 However, large hospitals possess a significant amount of protected health information (PHI). Combined with teaching hospitals’ needs for broad data access, this creates significant targets for cyber criminals compared with smaller institutions that might be the main reason for their relatively high risks of data breaches.
Bai G, Jiang J, Flasher R. The Need for Better Data Breach Statistics—Reply. JAMA Intern Med. 2017;177(11):1696–1697. doi:https://doi.org/10.1001/jamainternmed.2017.4929
Customize your JAMA Network experience by selecting one or more topics from the list below.
Create a personal account or sign in to: