Hospital Insider PHI Theft Case: Lessons to Learn

Key insider theft prevention steps, some security experts say, include conducting an enterprisewide risk assessment, adequately vetting staff members who have access to PHI and implementing behavioral analytics to track unusual access to patient information.In court papers filed in a U.S. federal court in New York, prosecutors alleged that Orlando Jemmott, a former emergency department clerk at Kings County Hospital in Brooklyn (owned by of NYC Health + Hospitals) from December 2014 to June 2017, “obtained individually identifiable health information relating … and disclosed it to another person, under false pretenses and with the intent to sell, transfer and use said individually identifiable health information for personal gain.”Jemmott was arrested in February and released on $80,000 bond in April. His alleged accomplice – Ron Pruitt – to whom Jemmott allegedly sold the PHI, was arrested in August and was released on his own recognizance.