What Did the HIPAA Omnibus Rule Do? Key Changes
In January 2013, the Department of Health and Human Services published a final rule that fundamentally reshaped HIPAA enforcement — and many healthcare organizations are still
A collection of 38 posts
In January 2013, the Department of Health and Human Services published a final rule that fundamentally reshaped HIPAA enforcement — and many healthcare organizations are still
In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting over 2.81 million individuals exposed systemic failures in
In February 2011, a major health system paid $4.3 million to settle with the Office for Civil Rights after stolen laptops exposed the electronic
When Advocate Medical Group paid $5.55 million to settle HIPAA violations in 2016, the penalty wasn't calculated under the original 1996 HIPAA
In January 2013, the Department of Health and Human Services published a rule that fundamentally restructured HIPAA enforcement — and many healthcare organizations are still catching
In 2009, the Department of Health and Human Services reported that fewer than 10% of U.S. hospitals had adopted even a basic electronic health
In 2024, OCR settled with a medical transcription company for $1.2 million after a breach investigation revealed the business associate had never conducted a
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a workforce member stole the protected health information of over
In February 2024, OCR settled with a healthcare provider for $480,000 after investigators found the organization had failed to conduct a risk analysis, neglected
In February 2023, Banner Health agreed to a $1.25 million settlement with the Office for Civil Rights after a 2016 breach exposed the protected
In February 2024, OCR settled with a New York medical practice for $100,000 after the organization failed to provide a timely written response to
When OCR announced a $4.8 million settlement with New York-Presbyterian Hospital and Columbia University in 2014, it was one of the first major enforcement
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.