The previous record for a HIPAA violation was $4.3 million in penalties levied in 2011 against a Maryland health plan company. A subsequent legal fight and court order pushed the final amount to almost $4.8 million.
"Our cases should remind healthcare organizations of the need to make data security central to how they manage their information systems."The Health and Human Services (HHS), Office of Civil Rights (OCR), investigated the breach and stated that organizations "need to make data security central to how they manage their information systems."
- Christina Heide, acting deputy director of health information privacy for OCR
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) New York-Presbyterian, Columbia to pay largest HIPAA settlement: $4.8 million - www.ModernHealth.com, 05/08/2014