HIPAA Violations
Children’s Medical Center of Dallas Pays Penalty of 3.2 Million for HIPAA and Compliance Violations
The U.S. Department of Health and Human Services, Office for Civil Rights (OCR), has announced a Health Insurance Portability and Accountability Act of 1996 (HIPAA) civil money penalty against Children’s Medical Center of Dallas (Children’s) based on its impermissible disclosure of unsecured electronic protected health information (ePHI) and non-compliance over many years with multiple standards…
Read MoreOCR announces largest ever HIPAA settlement with a single covered entity
Last month, the Department of Health and Human Services’ Office for Civil Rights (OCR) announced two large settlements with covered entities to resolve alleged HIPAA violations. However, even the $2.7 million and $2.75 million settlements at OHSU and UMMC were small in comparison to the latest enforcement action. OCR has just announced it has agreed…
Read MoreWidespread HIPAA vulnerabilities result in $2.7 million settlement with Oregon Health & Science University
Oregon Health & Science University (OHSU) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules following an investigation by the U.S. Department of Health and Human Services Office for Civil Rights (OCR) that found widespread and diverse problems at OHSU, which will be…
Read MorePhiladelphia Business Associate Agrees to $650,000 OCR Settlement
On June 24, 2016, the Department of Health and Human Services’ Office for Civil Rights (OCR) published details of a resolution agreement that was reached with Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS). CHCS has agreed to settle alleged HIPAA violations with the OCR and has agreed to implement a Corrective Action…
Read MorePHYSICAL THERAPY PROVIDER AGREES TO 25K HIPAA VIOLATION SETTLEMENT
OCR has announced it has arrived at a settlement with a Los Angeles-based provider of physical therapy services after the discovery of HIPAA Privacy Rule violations in 2012. Complete P.T., Pool & Land Physical Therapy, Inc., (CPT) has agreed to pay a fine of $25,000 to the Department of Health and Human Services after the…
Read MoreLincare Inc to Pay $239,800 CMP for HIPAA Violation
For only the second time in its history, OCR has ordered a HIPAA-covered entity to pay civil monetary penalties for HIPAA violations. Lincare Inc., is required to pay $239,800 for violations of the HIPAA Privacy Rule which were discovered during the investigation of a complaint about a breach of 278 patient records. The Privacy Rule…
Read MoreSix Unencrypted Hard Drives Containing PHI Reported Missing by Centene Corporation
Wisconsin-based health insurer, Centene Corporation, has announced the loss of six unencrypted computer hard drives containing the protected health information of approximately 950,000 of its members. The hard drives were being used for a project to improve the health outcomes of plan members. The individuals impacted by the security breach had all received laboratory services…
Read More$750,000 HIPAA FINE FOR UNIVERSITY OF WASHINGTON MEDICINE
University of Washington Medicine has agreed to settle with the Department of Health and Human Services’ Office for Civil Rights, and will pay a HIPAA fine of $750,000 for potential HIPAA violations stemming from a 90,000-record data breach suffered in 2013 Flurry of HIPAA Enforcement Activity as 2015 Draws to a Close There has been…
Read More$750,000 HIPAA Settlement for a Stolen Laptop and Unencrypted Backup Media from an Employees Car
Cancer Care Group, P.C. agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules with the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR). Cancer Care paid $750,000 and will adopt a robust corrective action plan to correct deficiencies in…
Read MorePHI Falls From Sky At Women’s Soccer Parade
The U.S. Women’s World Cup Soccer champions toured NYC celebrating their historic win, and were treated to a shower of confetti, some of which appeared to be made from medical prescription records. One local resident noticed the confetti contained writing and upon closer inspection, realized it was Protected Health Information. The confetti was photographed and…
Read More