What's a HIPAA Violation? Real Examples and Penalties
In February 2023, OCR settled with Banner Health for $1.25 million after a phishing attack exposed the protected health information of nearly 3 million
A collection of 241 posts
In February 2023, OCR settled with Banner Health for $1.25 million after a phishing attack exposed the protected health information of nearly 3 million
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
In 2023, OCR settled with a dental practice for $350,000 after the organization disclosed a patient's protected health information to a third-party
In 2023, OCR received over 700 large breach reports from covered entities and business associates — each one triggering federal and state notification obligations, media attention,
In February 2023, OCR settled with Banner Health for $1.25 million after a breach affecting nearly 3 million individuals — partly because the organization'
Every week, at least one compliance officer or new hire sends me some version of the same question: where can I get HIPAA certification? The
In 2023, OCR settled with a healthcare analytics company for over $1.5 million after the organization shared datasets it believed were de-identified — but which
In 2023, OCR settled with a covered entity for $1.3 million after an investigation revealed the organization had misclassified certain data as non-PHI — and
In 2023, OCR settled with a dental practice for $350,000 after an investigation revealed the organization had been disclosing patient names, treatment records, and
In 2023, OCR settled with a medical practice for $50,000 after an unauthorized employee accessed patient records with no treatment, payment, or operational justification.
In 2023, OCR settled with Yakima Valley Memorial Hospital for $240,000 after 23 security guards were found snooping through patient medical records without any
In 1996, a patient could lose health insurance simply by changing jobs — and their most sensitive medical records could be shared between companies without their
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.