Projects per year
Abstract
Certification mechanisms are often employed to assess and signal difficult-to-observe management practices and foster improvement. In the U.S. healthcare sector, a certification mechanism called meaningful-use attestation was recently adopted as part of an effort to encourage electronic health record (EHR) adoption while also focusing healthcare providers on protecting sensitive healthcare data. This new regime motivated us to examine how meaningful-use attestation influences the occurrence of data breaches. Using a propensity score matching technique combined with a difference-in-differences (DID) approach, our study shows that the impact of meaningful-use attestation is contingent on the nature of data breaches and the time frame. Hospitals that attest to having reached Stage 1 meaningful-use standards observe fewer external breaches in the short term, but do not see continued improvement in the following year. On the other hand, attesting hospitals observe short-term increases in accidental internal breaches but eventually see long-term reductions. We do not find any link between malicious internal breaches and attestation. Our findings offer theoretical and practical insights into the effective design of certification mechanisms.
| Original language | English |
|---|---|
| Pages (from-to) | 1043-1067 |
| Journal | MIS Quarterly: Management Information Systems |
| Volume | 42 |
| Issue number | 4 |
| Publication status | Published - Dec 2018 |
Research Keywords
- Data breaches
- Electronic healthcare records
- Healthcare
- Meaningful-use
- Security
- ISO-9000 CERTIFICATION
- FINANCIAL PERFORMANCE
- QUALITY MANAGEMENT
- TECHNOLOGY DIFFUSION
- GLOBAL DIFFUSION
- RECORD SYSTEMS
- MARKET VALUE
- IMPACT
- ADOPTION
- FIRMS
Publisher's Copyright Statement
- COPYRIGHT TERMS OF DEPOSITED FINAL PUBLISHED VERSION FILE: Kwon, J., & Johnson, M. E. (2018). MEANINGFUL HEALTHCARE SECURITY: DOES MEANINGFUL-USE ATTESTATION IMPROVE INFORMATION SECURITY PERFORMANCE? MIS Quarterly: Management Information Systems, 42(4), 1043-1067. https://doi.org/10.25300/MISQ/2018/13580
- Copyright © 2019 by the Management Information Systems Research Center (MISRC) of the University of Minnesota. Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and full citation on the first page. Copyright for components of this work owned by others than the MISRC must be honored. Abstracting with credit is permitted. To copy otherwise, to post on servers, or to redistribute to lists requires prior specific permission and possibly a fee. Request permission to publish from: MIS Quarterly; Carlson School of Management; University of Minnesota; 321 19th Ave. So.; Minneapolis, MN 55455. ISSN: 0276-7783.
Fingerprint
Dive into the research topics of 'MEANINGFUL HEALTHCARE SECURITY: DOES MEANINGFUL-USE ATTESTATION IMPROVE INFORMATION SECURITY PERFORMANCE?'. Together they form a unique fingerprint.Projects
- 1 Finished
-
GRF: How Healthcare Data Breaches and Meaningful Use of Electronic Health Records Influence Each Other
KWON, J. (Principal Investigator / Project Coordinator) & Johnson, M. E. (Co-Investigator)
1/01/15 → 16/08/17
Project: Research