HIPAA Security Rule

HIPAA Violations

HIPAA Violations List: The Most Common Failures in 2024

In February 2024, OCR settled with a healthcare provider for $4.75 million after an investigation revealed systemic failures across nearly every major HIPAA requirement

Nov 26, 2024

HIPAA and AI

HIPAA and AI: What Covered Entities Must Know Now

In late 2023, a large health system deployed a generative AI chatbot to assist clinical staff with documentation. Within weeks, workforce members were pasting entire

Nov 15, 2024

HIPAA Training

HIPPA Compliance Training for Employees: What's Required

In 2023, OCR settled with a Florida-based health system for $1.3 million after an investigation revealed that workforce members had been accessing patient records

Nov 15, 2024

HIPAA Compliant Cloud

HIPAA Compliant Cloud: What Covered Entities Must Know

In 2022, OCR settled with a health plan for $875,000 after an investigation revealed that protected health information stored in a cloud environment lacked

Nov 15, 2024

HIPAA Rules

HIPPA Rules and Regulations: What You Actually Need to Know

In 2023, OCR settled with Doctors' Management Services for $100,000 after a ransomware attack exposed the protected health information of over 206,000

Nov 15, 2024

Hospital Compliance Training

Hospital Compliance Training: What OCR Expects

In February 2024, OCR settled with a large health system for $480,000 after investigators found that the organization had failed to provide adequate HIPAA

Oct 29, 2024

HIPAA Email

Is Email PHI? What HIPAA Actually Requires for Email

In December 2023, OCR settled with a healthcare system for $480,000 after an investigation revealed workforce members had been emailing unencrypted patient information to

Jun 18, 2024

HIPAA Texting

Is Texting a Patient a HIPAA Violation? What to Know

In 2023, a dental practice in Texas received a $50,000 OCR settlement after a staff member texted appointment details — including treatment information — to the

May 20, 2024

HIPAA Updates

Latest HIPAA Updates: What Changed in 2024 and 2025

In December 2023, OCR issued its largest-ever HIPAA settlement — a $4.75 million penalty against Montefiore Medical Center after a workforce member stole protected health

May 6, 2024

HIPAA Responsibility

My Responsibility Under HIPAA Includes: A Complete Guide

In 2023, OCR settled a case with Yakima Valley Memorial Hospital for $240,000 after 23 security guards were found snooping through patient medical records

Apr 21, 2024

Online HIPAA Training

Online HIPAA Training Programs: What Actually Works

In 2023, OCR settled with a Florida-based dental practice for $30,000 after an investigation revealed the organization had never implemented formal workforce training — despite

Mar 7, 2024

HIPAA Privacy Rule

Privacy vs Security Rule HIPAA: Key Differences Explained

In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had addressed its Privacy Rule obligations but had done

Jan 8, 2024