Browse Definitions :
Definition

medical identity theft

Contributor(s): Matthew Haughn

Medical identity theft is the illegal access and use of a patient's personally identifiable information (PII) to obtain medical treatment, services or goods.

The thief's goal is to obtain key pieces of  personal information that will allow the thief to impersonate the victim. In addition to stealing the victim's date of birth, address and social security number, the thief may also steal the identification number the patient is assigned by his or her health care provider. The stolen information may be used to open credit card accounts or obtain medical services such as treatment at an emergency medical crisis location. The information may also be used to fraudulently obtain prescription drugs or expensive medical equipment that can be sold on the black market. 

Victims of medical identity theft may receive bills for medical services they did not receive, and the length of time it can take to resolve a dispute may have a negative impact on the victim's credit rating and future insurance costs. The perpetrators' actions may also add false information to the victim's electronic health record (EHR). Left unnoticed, this could provide medical personnel with incorrect or conflicting information about the patient's medical history or prescribed medications.

To mitigate the impact of medical identity theft, patients should routinely monitor their credit ratings and carefully read over bank, credit card and insurance statements to ensure that  all charges are legitimate. Suspicious activity should be reported to the appropriate agency as soon as possible. 

This was last updated in April 2016

Continue Reading About medical identity theft

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

Saw this on television recently. With all the data breaches and issues with the cloud lately, why would hospitals risk it ?? The answer is storage of medical records. Years ago I was in hospital for a procedure that did not go well. Spent 4 months before I was released. My medical records for that stay filled almost 5 3 inch thick 3-ring binders. So multiply that out by the number of patients and it's staggering. HIPAA should take another looking at putting this all at risk to theft.
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

SearchSecurity

  • Cybercrime

    Cybercrime is any criminal activity that involves a computer, networked device or a network.

  • data breach

    A data breach is a confirmed incident in which sensitive, confidential or otherwise protected data has been accessed and/or ...

  • zero-day (computer)

    A zero-day vulnerability, also known as a computer zero day, is a flaw in software, hardware or firmware that is unknown to the ...

SearchHealthIT

SearchDisasterRecovery

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

  • business continuity policy

    Business continuity policy is the set of standards and guidelines an organization enforces to ensure resilience and proper risk ...

SearchStorage

  • business impact analysis (BIA)

    Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to ...

  • RAID (redundant array of independent disks)

    RAID (redundant array of independent disks) is a way of storing the same data in different places on multiple hard disks to ...

  • dedicated cloud

    A dedicated cloud is a single-tenant cloud infrastructure, which essentially acts as an isolated, single-tenant public cloud.

Close