Friday, January 4, 2013

HHS: HIPAA Breach Settlement Involving Under 500 Patients

Over 60,000 "smaller" health data breaches, each affecting under 500 patients, have occurred in three years. The HHS is intent on pursuing providers implicated in such incidents.
"...regardless of size, covered entities must take action and will be held accountable for safeguarding their patients' health information... ." - Leon Rodriguez, OCR
In particular, the OCR wants to determine if a risk analysis has been conducted and policies and procedures have been put in place as required by the HIPAA security rule. The hospice involved in this first settlement had not taken appropriate measures in these areas;since the investigation this organization has taken numerous actions to protect patients' information.
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.
(a) HHS announces first HIPAA breach settlement involving less than 500 patients -, US Department of Health & Human Services, 01/02/2013
(b) HONI Settles with OCR: Press Release" - Hospice of North Idaho, 12/27/2012
(c) HHS Resoultion, HONI -, US Department of Health & Human Services, 12/28/2012

No comments:

Popular Posts

Copyright © 2010-2017 by Veriphyr Incorporated, All Rights Reserved.

Contact us at