Chat with us, powered by LiveChat

OCR

Adult & Pediatric Dermatology Fined $150,000 For Lost Thumb Drive

Recently a dermatology practice learned that something so small could be very costly. Adult & Pediatric Dermatology, P.C., of Concord, Mass., lost a thumb drive, which doesn’t seem like a huge deal except that specific thumb drive was unencrypted and contained the electronic protected health information of about 2,200 individuals. The US Department of Health …

Adult & Pediatric Dermatology Fined $150,000 For Lost Thumb Drive Read More »

WellPoint Agrees To Pay HHS $1.7 Million For Leaving Information Accessible Over Internet

According to the U.S. Department of Health and Human Services (HHS), WellPoint Inc. has agreed to pay them $1.7 million to settle potential violations to HIPAA Security and Privacy rules. You can read more about it here. The HHS is hoping that this case and other recent cases send an important message to all HIPAA …

WellPoint Agrees To Pay HHS $1.7 Million For Leaving Information Accessible Over Internet Read More »

Idaho State University Settles HIPAA Security Case For $400,000

According to the Department of Health and Human Services (HHS), Idaho State University has agreed to pay them $400,000 for violations of the HIPAA Security rule. The settlement was reached after 17,500 patients of an ISU clinic’s health records were compromised. You can read more about it here. The Office for Civil Rights (OCR) opened …

Idaho State University Settles HIPAA Security Case For $400,000 Read More »

Ready or Not, Here Come HIPAA Audits!

After running a successful pilot program in 2012 The Department of Health and Human Services’ Office for Civil Rights (OCR) is looking to launch a national HIPAA compliance audit program by the end of this year to ensure that all health care providers and business associates are compliant with HIPAA privacy and HIPAA security rules …

Ready or Not, Here Come HIPAA Audits! Read More »

OCR Issues First Fine for Non-Major Breach – Hospice of North Idaho

The Department of Health and Human Services’ Office for Civil Rights for the first time is financially punishing an organization for a breach of protected health information that affected less than 500 individuals. This is a new policy as OCR has previously limited issuance of hefty fines–and publicity of the fines–against several organizations following a …

OCR Issues First Fine for Non-Major Breach – Hospice of North Idaho Read More »

HIPAA Privacy Audits begin – 20 “initial” audits to 150 audits by end of 2012

Is attestation means to hold providers accountable for expenditure of public funds and protect against fraud and abuse? The Office for Civil Rights has engaged KPMG using $9M of their $52M budget for this year enforcing HIPAA compliance and investigating breaches for the CMS.  The covered entities in scope for KPMG audits are those that have received …

HIPAA Privacy Audits begin – 20 “initial” audits to 150 audits by end of 2012 Read More »

Changes to HIPAA Rules: OCR Increasing Financial Penalties

Just a quick update that the OCR is looking at the possibility of increasing civil money penalties for violations of requirements to ensure that protected health information stays private and is secure. Those who are found in violation may face fines of up to $1.5 million in a single calendar year. You can read more …

Changes to HIPAA Rules: OCR Increasing Financial Penalties Read More »

Scroll to Top