A new study in the Journal of the American Medical Association found 949 data breaches of health information between 2010 and 2013, affecting 29.1 million patient records. In an accompanying editorial, Commonwealth Fund President David Blumenthal, M.D., and Deven McGraw of Manatt, Phelps & Phillips offer their views on how health care organizations, clinicians, insurers, and policymakers should respond to ensure that sound “data hygiene” practices are followed and gaps in current privacy laws are closed.