Search

OCR will investigate smaller data breaches
By Mike Miliard | 03:23 pm | August 22, 2016
As data theft, ransomware, network attacks and accidental privacy violations continue to plague healthcare organizations of all sizes, HHS Office for Civil Rights has announced plans to devote more resources to investigating smaller breaches.
Few fines for healthcare data breaches
By Charles Ornstein, ProPublica | 10:12 am | March 02, 2015
Federal overseers have seldom penalized the healthcare organizations responsible for safeguarding this data, a ProPublica review shows.
New HIPAA enforcer takes reigns
By Healthcare Finance Staff | 09:37 am | July 07, 2014
The Office for Civil Rights, the HHS division responsible for enforcing HIPAA, is slated to get a new director after the official departure of Leon Rodriguez.
Hospital security costs continue to rise
By Erin McCann | 11:50 am | February 03, 2014
Security events in U.S. hospitals cost an estimated $1.6 billion each year. Nearly one of every five hospitals experiences a security breach, with the bill averaging $810,000 per breach.
Affinity Health Plan pays $1.2M for photocopier breach
By Healthcare Finance Staff | 12:09 pm | August 14, 2013
The U.S. Department of Health and Human Services has settled with Affinity Health Plan, a New York-based managed care plan, for HIPAA violations to the tune of $1,215,780 after a photocopier containing patient information was compromised.
The wait is over: HHS releases final HIPAA rule
By Healthcare Finance Staff | 12:28 pm | January 18, 2013
The most eagerly awaited -- if not anxiety-laden -- set of regulations in the healthcare spectrum arrived late Thursday: HHS issued modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules.
HHS releases HIPAA final rule
By Tom Sullivan | 11:45 am | January 18, 2013
HHS issued modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules late Thursday. The four-part final rule is designed to enhance patients' privacy rights and increase HHS' ability to enforce security protections.
Data breach leads to $1.7M fine for Alaska DHSS
By Erin McCann | 12:09 pm | June 27, 2012
The Alaska Department of Health and Social Services (DHSS) -- the state's Medicaid agency -- has agreed to pay $1.7 million to the U.S. Department of Health and Human Services (HHS) to settle possible violations of the HIPAA Security Rule, making it the second largest settlement for HIPAA violations to date.
HHS cracks down on physicians' practice for HIPAA violation
By Bernie Monegain | 10:28 am | April 20, 2012
HHS settles with an Arizona physicians' practice for $100,000 over their failure to adequately protect patient health records.
Data breach costs Tennessee Blue $1.5M
By Healthcare Finance Staff | 12:00 pm | March 15, 2012
Blue Cross Blue Shield of Tennessee (BCBST) has settled a potential violation of HIPAA privacy and security provisions with the Department of Health and Human Services for $1.5 million. It is the first enforcement action resulting from the HITECH Breach Notification Rule.

More Stories

Lab workers
AHA, AMA, other providers urge Congress to prevent 15% payment cut to labs
Edward Marx, Marx Advisory_US Capitol drawing by slowgogo/DigitalVision Vectors/Getty Images
Dive deep into AI and become an expert, says advisor
Senior being helped by nursing home staff
NYU Langone extends physician presence into nursing homes
Silhouette of person staring out of a window
States struggle with short timeline to implement Medicaid work requirements
Dr. Joy Bhosai, founder and CEO of Pluto Health
Ethical safeguards must evolve as AI becomes more prevalent
Hand pointing to a line graph
Humana expects star rating, Medicare improvements in posting $195M in Q3 profit