A collection of 16 posts
The Question That Catches Most Compliance Officers Off Guard A hospital system I worked with had 14,000 employees. Their HIPAA training program covered about
Here's something that surprises most people in healthcare: the law they cite every single day — HIPAA — has five distinct sections, and the vast
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed the organization had failed to properly safeguard patient
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed that protected health information stored on a network
In 2023, OCR settled with Doctors' Management Services for $100,000 after a ransomware attack exposed the protected health information of over 206,000
In 2023, OCR settled a case with a dental management company — not a dentist, not a hospital, but an administrative services firm — for $350,000
OCR investigators don't grade your spelling — but if your compliance policies, workforce training materials, or Notice of Privacy Practices consistently reference "HIPPA&
In December 2023, OCR issued its largest-ever HIPAA settlement — a $4.75 million penalty against Montefiore Medical Center after a workforce member stole protected health
In 2023, the HHS Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many involving organizations that simply failed
In 2023, the Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many of which traced back to organizations
In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had no written policies addressing either patient privacy or
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.