HIPAA Patient Identifiers: The 18 Data Points That Trigger Compliance
A hospital employee in Texas once looked up her ex-husband's medical records out of curiosity. She didn't change anything. She didn&
A collection of 9 posts
A hospital employee in Texas once looked up her ex-husband's medical records out of curiosity. She didn't change anything. She didn&
A hospital in Texas once sent a spreadsheet of 3,400 patient records to a business associate — with every column of identifying data still intact.
The Statement That Trips Up Even Experienced Compliance Officers Here's a question I've watched rooms full of healthcare professionals get wrong:
In 2023, a dental practice in New England received a six-figure penalty from OCR after posting appointment reminders on a public-facing scheduling platform that exposed
A behavioral health clinic in Connecticut received a $125,000 penalty from OCR after disclosing a spreadsheet of patient data that staff believed was "
In 2023, OCR settled with a healthcare analytics company for over $1.5 million after the organization shared datasets it believed were de-identified — but which
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had disclosed patient names, treatment records, and Social
In 2023, OCR settled with a health system for $1.3 million after an investigation revealed that employee spreadsheets containing patient names, dates of birth,
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that protected health information — including names, dates of
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.