The hospital will pay this civil penalty to the Massachusetts Attorney General who filed a lawsuit after discovering 12,127 of those patients were Massachusetts residents. This is an example of states attorney generals' power to sue for HIPAA violations.
"Personal information and protected health information must be properly safeguarded by hospitals and other healthcare entities."According to Massachusetts AG Martha Coakley, "This data breach put thousands of Massachusetts consumers at risk, and it is the hospital's responsibility to ensure that this type of event does not happen again." Organizations seeking to proactively detect breaches of patient privacy can utilize low-cost on-demand SaaS analytics services.
- Attorney General of Massachusetts
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) Women & Infants Hospital to Pay $150,000 to Settle Data Breach Allegations Involving Massachusetts Patients - www.PHIprivacy.net,07/23/2014