Case Study: Nuvance Health prevents internal privacy breaches and accelerates compliance investigations with FairWarning

Preventing Internal Privacy Breaches with FairWarning

Health Quest, the Mid‑Hudson Valley’s largest integrated healthcare system (3 hospitals, 10 clinics, 697 beds), faced a growing risk from internal privacy breaches: while external defenses were in place, authorized-user misuse of electronic health records posed reputational and regulatory exposure under HIPAA as EHRs became ubiquitous. The organization needed a proactive, cross‑departmental approach that joined IT, Compliance, and Security to detect and investigate inappropriate access quickly.

Health Quest selected FairWarning’s patient privacy monitoring solution for its proven support of Cerner and McKesson and its compliance automation. Implemented in under four months with IT and Compliance working together, the web‑based system lets compliance staff run reports and conduct end‑to‑end investigations without IT intervention, eliminating delays, improving responsiveness, and helping the organization meet HIPAA, HITRUST and Meaningful Use requirements while reducing overall privacy risk.

Nuvance Health

David Sheidlower

Chief Information Security Officer