Articles and Blogs

ePHI

Publicly Available ePHI Leads to $1.6 Million Fine

[11/08/19]

Posted on November 8, 2019 in Health Law News

Published by: Hall Render

On November 7, 2019, the Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced that a Texas state agency (“State Agency”) will pay a penalty of $1,600,000 for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy Rule and Security Rule. According to the Notice of... READ MORE

Tags: , , , ,

Failure to Encrypt Hardware Results in $3 Million Fine

[11/07/19]

Posted on November 7, 2019 in Health Information Technology

Published by: Hall Render

On November 5, 2019, the Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced that a New York Medical Center (“Medical Center”) will settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) by paying a civil penalty of $3 million and entering into a Corrective Action... READ MORE

Tags: , , , , , ,

Deficient Risk Analyses, Stolen Records and Disclosure of NFL Player’s PHI Leads to $2.15 Million Penalty

[10/25/19]

Posted on October 25, 2019 in Health Information Technology

Published by: Hall Render

On October 23, 2019, the Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) announced a civil monetary penalty (“CMP”) of $2,154,000 against a nonprofit academic health system (“Health System”) for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). The Notice of Proposed Determination and the Notice of... READ MORE

Tags: , , , , ,

Repeated Breaches of ePHI Result in a $3 Million Fine, Capping Off OCR’s “Record Year” of 2018 Enforcement Actions

[02/19/19]

Posted on February 19, 2019 in Health Information Technology

Published by: Hall Render

The Office for Civil Rights (“OCR”) announced that a health system in California (the “System”) was required to pay a $3 million fine and adopt an extensive corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). The System operates several hospitals, including a rehabilitation hospital... READ MORE

Tags: , , , , , , ,

Largest Health Data Breach = Largest OCR Settlement in History

[10/19/18]

Posted on October 19, 2018 in Health Information Technology

Published by: Hall Render

On October 15, 2018, the Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) announced that it had reached a record $16 million settlement with Anthem arising out of alleged violations of the Privacy and Security Rules under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). The settlement comes... READ MORE

Tags: , , , , , ,