HIPAA Laws: What Most Organizations Still Get Wrong
A hospital in Louisiana lost $480,000 because a single employee snooped through a patient's medical record out of curiosity. Not a hacker.
A collection of 250 posts
A hospital in Louisiana lost $480,000 because a single employee snooped through a patient's medical record out of curiosity. Not a hacker.
I once watched a practice manager spend three hours searching for a "federally recognized HIPAA certification test" — convinced that HHS issued some kind
In 2018, a medical billing company called Advanced Care Hospitalists paid $500,000 to settle with HHS after a business associate they'd hired
A small dermatology practice in Connecticut thought they were HIPAA compliant because they had a privacy notice in the lobby and passwords on their computers.
A front-desk employee at a Florida clinic bills Medicare for physical therapy sessions that never happened. A physician upcodes patient visits — documenting complex evaluations when
A $4.3 Million Fine Started with a Missing Definition In 2016, the University of Texas MD Anderson Cancer Center lost three unencrypted devices containing
A receptionist at a cancer clinic in Florida forwarded a spreadsheet of 1,200 patient names, diagnoses, and Social Security numbers to her personal Gmail
A small dermatology practice in Connecticut thought they had HIPAA covered. They had a privacy notice on their website and a shredder in the back
The Penalty That Started With an Untrained Receptionist In 2018, Cottage Health paid $3 million to settle with HHS after a breach exposed over 62,
A radiology technician at a hospital in New York forwarded a patient's imaging report to her personal Gmail account so she could "
A cloud storage vendor loses a laptop containing 20,000 patient records. The hospital that hired them gets the breach notification letter. The vendor insists
I once watched a hospital administrator spell it "HIPPA" on a slide deck in front of 200 employees. Nobody corrected her. That moment
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.