Why Was HIPAA Enacted? The Real Regulatory History
In 1996, a patient could lose health insurance simply by changing jobs — and their most sensitive medical records could be shared between companies without their
In 1996, a patient could lose health insurance simply by changing jobs — and their most sensitive medical records could be shared between companies without their
In 2023, a hospital employee in New York accessed the medical records of a coworker out of curiosity — no treatment purpose, no payment reason, no
In 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals exposed failures across multiple HIPAA requirements
When OCR settled with Anthem Inc. for $16 million in 2018 — the largest HIPAA settlement in history at that time — the enforcement action didn'
In February 2024, OCR settled with a healthcare system for $480,000 after investigators found that workforce members had never completed HIPAA training — despite handling
In February 2023, OCR settled with a Florida-based medical practice for $30,000 after investigators found the organization had no evidence of workforce HIPAA training
In 2023, OCR settled with a New England dermatology practice for $300,640 after the organization disclosed protected health information to a patient's
In June 2023, OCR settled with a dental management company for $350,000 after discovering it had allowed a business associate to access protected health
In 2023, OCR settled with a regional hospital system that had failed to conduct a thorough risk analysis — and during the investigation, auditors discovered the
In February 2024, OCR settled with a Florida-based healthcare provider for $160,000 after a breach investigation revealed that multiple workforce members had never received
In 2023, OCR settled with a covered entity for over $100,000 after the organization disclosed protected health information without a valid authorization — partly because
In 2023, OCR settled with a business associate that failed to ensure its subcontractors had proper safeguards in place for protected health information. The penalty
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.