A collection of 14 posts
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed the organization had failed to properly safeguard patient
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that protected health information stored on a network
In 2023, OCR settled with Doctors' Management Services for $100,000 after a ransomware attack exposed the protected health information of over 206,000
In 2023, OCR settled a case with a dental management company — not a dentist, not a hospital, but an administrative services firm — for $350,000
OCR investigators don't grade your spelling — but if your compliance policies, workforce training materials, or Notice of Privacy Practices consistently reference "HIPPA&
In December 2023, OCR issued its largest-ever HIPAA settlement — a $4.75 million penalty against Montefiore Medical Center after a workforce member stole protected health
In 2023, the HHS Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many involving organizations that simply failed
In 2023, the Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many of which traced back to organizations
In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had no written policies addressing either patient privacy or
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
In 1996, a patient could lose health insurance simply by changing jobs — and their most sensitive medical records could be shared between companies without their
In 2023, OCR settled with a business associate that failed to ensure its subcontractors had proper safeguards in place for protected health information. The penalty
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.