Posted inPCI DSS compliance
Healthcare identity theft and fraud is a fast-growing threat in the US, but some insurance organisations are getting the diagnosis spot on and the remedy is working.
This summer Symantec sent a chill through the medical insurance world with a warning that criminals are stepping up their efforts to steal health-related data, including sensitive patient information.
Breach incidents are growing at around 10% each year, while the healthcare sector accounts for 18% of breaches across all sectors globally, according to research cited by Symantec.
Meanwhile, Experian has warned that medical breaches are becoming an epidemic and medical identity theft can be harder to discover than other types of ID theft because it happens when someone steals another person’s identity to obtain medical services.
Headline-grabbing statistics can feel a world away from the everyday experiences of health insurance companies and their customers who've so far managed to stay unharmed. But medical fraud impacts everyone and causes massive damage.
'Healthcare fraud hurts everyone. In addition to higher premiums and increased out-of-pocket costs, healthcare fraud compromises health and safety, which can result in harm to patients, and undermines the public's confidence in the healthcare system,' says BlueCross BlueShield (BCBS), which has been proactive in the battle against criminals.
So what's the solution?
One key area that you can secure is your contact centre and the risk of rogue agents taking customers' medical identity records over the phon and then using or selling them on to fraudsters. Sensitive details are often spoken aloud and seen on screen. They can also be stolen from call recording systems, or intercepted when transmitted through networks and systems.
Now health insurance companies can avoid these risks...
Never seen or heard
Eckoh has devised a way to stop sensitive customer data from being heard or seen by your agents and from being stored on your systems, including payment card details.
The company's CallGuard solution has won top security awards. It's also being used successfully by healthcare insurance organisations that include Horizon Blue Cross Blue Shield of New Jersey, Blue Cross Blue Shield Alabama, Blue Cross Blue Shield of Kansas, and Carefirst Blue Cross Blue Shield.
CallGuard finds a way for customers to enter sensitive details discreetly using their telephone keypad. Agents do not see the customer’s digits on screen or even hear the DTMF tones when the keypad is pressed (these don't appear in call recordings either). The call is continuous and the agent is simply notified when the data has been accepted.
This approach delivers three major benefits:
It's fast, reliable and cost-effective: You don't need to create 'clean rooms', lock down desktops, or adopt obsessively-strict, expensive and stifling security processes for staff. You don't even need to make changes to your CRM or payment service provider.
Customers get a great experience: Callers will appreciate you're protecting their data. Calls don't increase in length and the agent is always on-hand throughout the process; there's no pause-and-resume nonsense.
Business flexibility: It's easier to hire and retain agents. You don't need to train and security-clear a special class of employees for sensitive tasks. Security no longer relies on the agent. With CallGuard, they can be based anywhere too so they could be off-shore or working remotely at home. Discover more - before the epidemic hits
According to analysts, the medical fraud menace isn't ending anytime soon it's accelerating. Why not follow the lead taken by some of the BlueCross BlueShield organizations.
If you’d like to talk to us about how we could help protect your BlueCross BlueShield business then why not get in touch.
 '4 Emerging Threats to Healthcare Providers' - Symantec, 9 Jul, 2018
 'Cyber Security and Healthcare: An Evolving Understanding of Risk' - Symantec, 2018
 'Here’s Your Rx to Avoid Medical Identity Theft' - Experian
 Healthcare Fraud - BCBS
 PCI Excellence Award 2018, CallGuard - Eckoh
Latest Blog Items
Wednesday, 01 July 2020 Remote working for contact centres: Critical next steps, beyond the crisisRemote working — is here to stay. How to make sure security is not compromised
Friday, 19 June 2020 Nine things that bug you about PCI DSS complianceCompliance with the Payment Card Industry Data Security Standard (PCI DSS) helps companies to demonstrate they can process card payments securely and reduce card fraud.
Wednesday, 10 June 2020 Contact centre resilience – 5 lessons learned from COVID-19In the words of Elvis, we’re ‘all shook up’. Not surprising after the initial reaction to the global pandemic that is COVID-19. It’s changed how we think, live and work and why it’s important to build resiliency into contact centre operations.