HIPAA Security Rule risk analysis requirements, methodologies, and compliance strategies
A $4.75 Million Wake-Up Call That Started With a Checkbox In 2023, Banner Health paid $1.25 million to settle with OCR after investigators
The One Document OCR Asks For First — Every Single Time I've been involved in over a hundred HIPAA readiness reviews. And I can
After consulting for over 2,500 healthcare organizations, they all had one major risk in common—no audit record or evidence of HIPAA training. Learn how to stay off OCR's radar.
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
In February 2024, OCR announced a $4.75 million settlement with a nonprofit health system that failed to conduct an enterprise-wide risk analysis — a failure
In February 2024, OCR announced a $4.75 million settlement with Montefiore Medical Center after a former employee stole the protected health information of over
In February 2024, OCR announced a $4.75 million settlement with a hospital system that failed to conduct an enterprise-wide risk analysis — a requirement that
In 2023, OCR settled with a healthcare system for $1.3 million after an investigation revealed that a single misconfigured server — one that the IT
In February 2024, OCR settled with a small dental practice for $70,000 — not because of a massive data breach, but because the practice couldn&
When OCR investigated a midsize hospital system in 2023, investigators didn't just ask about the breach itself — they asked for six years of
In 2019, OCR settled with a dental practice in Texas for $10,000 after an investigation revealed the office had no written HIPAA policies, no
In 2023, OCR settled with a dental practice in New England for $350,000 — not because of a massive data breach, but because the organization
Join healthcare organizations that trust HIPAA Certify for their workforce training and compliance tracking.