HIPAA Privacy Rule
What Does the HIPAA Privacy Rule Protect? A Real Guide
A physician's office in Texas left a box of patient records next to a dumpster in 2019. Someone took a photo, posted it
Tag
OCR Enforcement
Office for Civil Rights HIPAA enforcement actions, investigations, and compliance strategies
HIPAA Basics
Define HIPAA and Why It Was Established: A Real Guide
A $16 Million Wake-Up Call That Traces Back to 1996 In 2018, Anthem Inc. wrote a check to the U.S. Department of Health and
HIPAA Medical Privacy
HIPAA Medical Privacy: What Covered Entities Get Wrong
A Nurse, a Hallway, and a $4.75 Million Settlement In 2021, a major health system paid $4.75 million to settle allegations from the
PHI Definition
What PHI Means in HIPAA: The Definition That Drives Everything
A Single Misunderstood Term Cost This Health Plan $6.85 Million In 2018, Premera Blue Cross agreed to pay $6.85 million to settle HIPAA
HIPAA Penalties
What Are the Penalties for HIPAA Violations in 2026?
In 2018, a small dermatology practice in Massachusetts called Adult & Pediatric Dermatology, P.C. paid $150,000 to settle a HIPAA case. The trigger?
HIPAA Law
Define HIPAA Law: What It Actually Means in 2026
A small dental practice in Georgia gets hit with a $70,000 penalty because a front-desk employee left a box of patient files on a
PHI Release Form
PHI Release Form: What Your Practice Gets Wrong
A Missing Checkbox Cost This Hospital $387,000 In 2019, Bayfront Health St. Petersburg agreed to a $85,000 corrective action settlement with OCR after
HIPAA Compliance Program
An Effective Compliance Program Should Include These 7 Parts
In 2018, the University of Texas MD Anderson Cancer Center lost a $4.3 million appeal after OCR found that the organization had policies on
HIPAA Breach
Definition of HIPAA Breach: What Actually Triggers One
A Stolen Laptop, a Missing Exception, and a $3 Million Problem In 2018, the University of Texas MD Anderson Cancer Center lost an unencrypted laptop
Covered Entities
Covered Entities Include: Who HIPAA Actually Applies To
A few years ago, I got a call from the office manager of a chiropractic clinic in Texas. She was panicking. They'd just
HIPAA Training
HIPPA Compliance Training for Employees: A Guide
A receptionist at a small orthopedic clinic in Arizona clicked "Reply All" to an email containing 836 patient records. The breach triggered an
HIPAA Privacy Risk Analysis
HIPAA Privacy Risk Analysis: What Most Orgs Get Wrong
A $4.75 Million Fine That Started With One Missing Document In 2023, OCR settled with Lafourche Medical Group for $480,000 after a phishing