A collection of 11 posts
In 2011, a small cardiology practice in Phoenix switched from paper charts to an electronic health record system. Within six months, an unencrypted laptop containing
When Cignet Health of Maryland refused to provide 41 patients access to their medical records, the Office for Civil Rights (OCR) imposed a $4.3
When OCR levied a $4.3 million settlement against MD Anderson Cancer Center in 2018 for unencrypted devices containing protected health information, the enforcement authority
In February 2011, Cignet Health of Prince George's County, Maryland, received a $4.3 million civil money penalty from the Office for Civil
In 2018, the University of Texas MD Anderson Cancer Center lost a $4.3 million appeal after OCR determined that three data breaches involving unencrypted
In February 2011, Massachusetts General Hospital paid $1 million to settle HIPAA violations involving the loss of protected health information for 192 patients. What made
In February 2011, Cignet Health of Prince George's County, Maryland received a $4.3 million civil money penalty from the Office for Civil
When Advocate Medical Group paid $5.55 million to settle HIPAA violations in 2016, the penalty wasn't calculated under the original 1996 HIPAA
In 2009, the Department of Health and Human Services reported that fewer than 10% of U.S. hospitals had adopted even a basic electronic health
When the Cottage Health System paid $3 million to settle HIPAA violations in 2019, their breach affected over 62,000 patients — and a key finding
In 2018, MD Anderson Cancer Center lost a $4.3 million appeal over HIPAA violations that hinged on provisions strengthened by the HITECH Act. The
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.