HIPAA Privacy Rule requirements and guidance
In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals exposed systemic failures in risk
In 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals revealed failures across multiple HIPAA requirements
In 2023, the HHS Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many involving organizations that simply failed
In 2023, the Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many of which traced back to organizations
In February 2023, OCR settled with a dental practice in New England for $30,000 after investigators found the organization had no written HIPAA policies,
In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had no written policies addressing either patient privacy or
In 2023, OCR settled with a dental practice in New England for $50,000 after an investigation revealed that front-desk staff had been disclosing patient
In 2024, OCR settled a HIPAA enforcement case with Montefiore Medical Center for $4.75 million after a workforce member stole protected health information on
In 2023, OCR settled with a health system for $40,000 after the organization failed to provide a patient timely access to her own medical
A hospital's HR department shared an employee's sick leave records with a manager, and the employee filed a complaint with the
In 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals exposed critical failures across multiple HIPAA
In 2023, the Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — all stemming from organizations that failed to
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.