A collection of 228 posts
In 2023, the HHS Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many involving organizations that simply failed
In 2023, the Office for Civil Rights (OCR) settled or imposed penalties in cases totaling over $4 million — many of which traced back to organizations
In 2023, OCR settled with a dental practice in New England for $50,000 after it failed to provide a patient with a copy of
In 2023, OCR settled with a dental practice for $350,000 after investigators found the organization had no written policies addressing either patient privacy or
In February 2024, OCR settled with a Louisiana medical group for $480,000 after a phishing attack exposed the protected health information of over 34,
In 2023, OCR settled with a dental practice in New England for $50,000 after an investigation revealed that front-desk staff had been disclosing patient
In 2024, OCR settled a HIPAA enforcement case with Montefiore Medical Center for $4.75 million after a workforce member stole protected health information on
In 2023, OCR settled with a health system for $1.3 million after investigators found systemic failures in safeguarding patient records — failures that traced back
In 2023, OCR settled with a health system for $40,000 after the organization failed to provide a patient timely access to her own medical
In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting over 2.81 million individuals exposed systemic failures in
A hospital's HR department shared an employee's sick leave records with a manager, and the employee filed a complaint with the
In 2023, OCR settled with a health system for $1.25 million after discovering that the organization had allowed a vendor to access protected health
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.