As we have noted here in the past, the new HITECH legislation expands on HIPAA encryption requirements for health records and mandatory penalties for data breaches.  CSO Magazine outlines five steps that organizations should take to prepare for HITECH.

The article also touches on costs that go beyond regulatory penalties:

No doubt, the HITECH Act raises the stakes for a data breach. But regulations aside, data breaches can hurt your organization’s credibility and can carry huge medical and financial risks to the people whose data is lost.

Data Security, Healthcare