Office for Civil Rights HIPAA enforcement actions, investigations, and compliance strategies
Every week, healthcare administrators search for "hipp certification" expecting to find a single credential that makes their organization HIPAA-compliant. The reality is more
In 2024, OCR settled with a New England dermatology practice for $300,000 after discovering that protected health information had been disclosed to a vendor
In late 2023, a large health system deployed a generative AI chatbot to assist clinical staff with documentation. Within weeks, workforce members were pasting entire
Every week, thousands of healthcare workers search for a HIPPA class — and right away, there's a problem. The correct acronym is HIPAA: the
In 2023, OCR settled with a Florida-based health system for $1.3 million after an investigation revealed that workforce members had been accessing patient records
In 2022, OCR settled with a health plan for $875,000 after an investigation revealed that protected health information stored in a cloud environment lacked
In 2023, a small dental practice in Texas received an OCR investigation notice after a patient complained that the office shared medical records with a
In February 2023, OCR settled with a healthcare provider for $1.3 million after finding systemic failures to comply with basic HIPAA laws — failures that
In 2023, OCR settled with Doctors' Management Services for $100,000 after a ransomware attack exposed the protected health information of over 206,000
When Cignet Health of Maryland refused to provide 41 patients access to their medical records, the Office for Civil Rights (OCR) imposed a $4.3
When OCR levied a $4.3 million settlement against MD Anderson Cancer Center in 2018 for unencrypted devices containing protected health information, the enforcement authority
In February 2024, OCR settled with a large health system for $480,000 after investigators found that the organization had failed to provide adequate HIPAA
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.