A collection of 29 posts
A cloud storage vendor loses a laptop containing 20,000 patient records. The hospital that hired them gets the breach notification letter. The vendor insists
A nurse in Tennessee pulls up her ex-husband's medical records after a custody dispute. A front desk worker in Colorado texts a photo
A hospital employee in South Carolina pulled up her ex-husband's medical records out of curiosity. No malicious intent. No financial motive. Just a
A small dermatology practice in New England thought they were covered. They'd signed up for a popular cloud storage service, uploaded thousands of
The Server Room Where $4.3 Million Disappeared In 2023, the University of Texas MD Anderson Cancer Center lost a Supreme Court appeal after OCR
A Nurse in Tennessee Got Four Years in Federal Prison In 2022, a former employee of a Tennessee medical clinic was sentenced to federal prison
A few years ago, I got a call from the CEO of a mid-sized billing company. His team had been processing claims for a hospital
A Single Complaint to the Wrong Agency Can Cost You Months I got a call last year from a clinic administrator who had filed a
A Question That Gets People Fired Last year, I consulted with a medical billing company whose CEO genuinely believed HIPAA didn't apply to
A $4.75 Million Wake-Up Call from an Agency You've Probably Underestimated In 2024, the Office for Civil Rights slapped a $4.75
In 2023, a patient in Texas discovered her therapist had disclosed session notes to a family member without authorization. She hired an attorney, filed suit
When OCR levied a $4.3 million settlement against MD Anderson Cancer Center in 2018 for unencrypted devices containing protected health information, the enforcement authority
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.