HIPAA compliance training resources and best practices for healthcare professionals
In October 2023, OCR settled with a Louisiana medical group for $480,000 after a phishing attack exposed the protected health information of over 34,
In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals exposed catastrophic failures in risk
In 2023, OCR settled with a health system that had been using an outdated authorization form for nearly four years — one that failed to include
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had disclosed patient records to a third-party marketing
In 2023, OCR settled with a health system for $40,000 after it failed to provide a patient timely access to her own medical records
In 2023, OCR investigated a research institution that published a dataset it believed was fully de-identified — only to discover that zip codes and dates of
In 2016, OCR settled with North Memorial Health Care of Minnesota for $1.55 million after determining that a business associate had provided PHI access
When a major Texas health system paid $1.6 million in state penalties for unauthorized disclosures of protected health information, it wasn't a
If you've encountered the question "the enforcement rule applies to covered entities only — true or false" on a compliance quiz, you
In 2023, OCR investigated a mid-size hospital that suffered a breach traceable to a volunteer who accessed patient records without authorization. The hospital argued the
In 2023, OCR settled with a major health plan for $1.3 million after an investigation revealed the plan had used enrollee protected health information
In 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals revealed failures across multiple HIPAA requirements
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.