HIPAA Security Certification: What It Really Gets You
A compliance officer at a midsize cardiology practice once told me she'd spent $4,200 on a "HIPAA security certification" for
A collection of 16 posts
A compliance officer at a midsize cardiology practice once told me she'd spent $4,200 on a "HIPAA security certification" for
A mid-size pediatric health network migrated to a popular cloud platform in 2022. They configured the servers, encrypted the data at rest, and assumed they
A radiology practice in Tennessee got hit with a $3 million penalty because they let a former employee keep access to a cloud server holding
In February 2023, Banner Health paid $1.25 million to settle allegations that it failed to conduct an enterprise-wide risk analysis — a core requirement of
Last year, a compliance officer at a mid-size hospital system in Texas told me she'd spent $14,000 on a vendor's
A nurse texts a photo of a wound to a dermatologist for a quick consult. A front-desk coordinator sends an appointment reminder with a diagnosis
The One Document OCR Asks For First — Every Single Time I've been involved in over a hundred HIPAA readiness reviews. And I can
A $4.3 Million Fine That Started with Untrained Staff In 2015, the University of Texas MD Anderson Cancer Center lost three unencrypted devices containing
A Stolen Laptop, a $3 Million Fine, and a Lesson in How NOT to Protect PHI In 2016, the University of Mississippi Medical Center paid
The Audit That Costs Less Than the Breach A hospital system in Oregon thought its annual checklist was enough. Internal IT signed off every year.
In 2018, the University of Texas MD Anderson Cancer Center lost a $4.3 million appeal after OCR found that unencrypted laptops and thumb drives
In 2023, OCR settled with a healthcare provider for $1.3 million after an investigation revealed the organization had failed to implement even basic technical
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.