HIPAA Privacy Authorization: What Your Forms Must Include
In 2023, OCR settled with a New England dermatology practice for $300,640 after the organization disclosed protected health information to a reporter's
A collection of 32 posts
In 2023, OCR settled with a New England dermatology practice for $300,640 after the organization disclosed protected health information to a reporter's
In 2023, OCR investigated a mid-sized specialty clinic that had been using the same patient authorization form since 2009. The form lacked three of the
In 2023, OCR settled with a New England dermatology practice for $300,640 after an investigation revealed the organization had disclosed protected health information to
In 2023, OCR investigated a mid-size hospital that released a patient's psychiatric records to a caller who identified herself as the patient'
Last year, a mid-size orthopedic practice in the Southeast received a medical records subpoena from an attorney involved in a personal injury lawsuit. The office
A mid-size behavioral health practice in the Southeast received a subpoena demanding the complete treatment records of a current patient involved in a custody dispute.
In 2024, Kaiser Permanente disclosed that a tracking technology breach potentially exposed the protected health information of 13.4 million individuals — one of the largest
In 2023, OCR settled with a New England dermatology practice for $300,640 after it disclosed a patient's protected health information to a
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
In 2023, OCR settled with a New England dermatology practice for $300,640 after the organization disclosed protected health information to a patient's
In 2023, OCR settled with a covered entity for over $100,000 after the organization disclosed protected health information without a valid authorization — partly because
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.