A collection of 54 posts
In 2023, OCR investigated a mid-size hospital that suffered a breach traceable to a volunteer who accessed patient records without authorization. The hospital argued the
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had disclosed patient records without authorization — in part
In 2023, OCR settled with a dental practice in New England for $50,000 after an investigation revealed that front-desk staff had been disclosing patient
In 2022, a specialty clinic in the Midwest disclosed an entire patient record — surgical history, psychiatric notes, billing details — to an employer conducting a routine
A hospital's HR department shared an employee's sick leave records with a manager, and the employee filed a complaint with the
In 2022, a small dental practice in the Southeast received a corrective action letter from the Office for Civil Rights (OCR) after a patient complaint
In January 2013, the Department of Health and Human Services published a rule that fundamentally restructured HIPAA enforcement — and many healthcare organizations are still catching
In 2023, a dental practice in New England received a $50,000 OCR settlement after a workforce member posted a patient's before-and-after photos
In 2023, OCR settled with a dental practice for $350,000 after it disclosed patient diagnoses in response to negative online reviews. The information shared
In 2023, the Department of Justice recovered over $2.68 billion in settlements and judgments related to healthcare fraud — a significant portion tied to Anti-Kickback
In 2023, OCR settled with Yakima Valley Memorial Hospital for $240,000 after 23 security guards were found snooping through patient medical records without a
In 2023, OCR settled with a dental practice for $350,000 after an impermissible disclosure involving patient appointment data — information the practice didn't
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.