He was charged with “Wrongful Disclosure of Individually Identifiable Health Information” from December 1, 2012 through January 14, 2013. While an employee he obtained protected health information (PHI) with the intent to use the information for personal gain, according to the indictment.
"From December 1, 2012, through January 14, 2013, [he] obtained protected health information with the intent to use the information for personal gain." - Indictment document, US Attorney's office East Texas DistrictIt is unclear how the breach, which went on for over a year, was discovered. Often law enforcement, or some third party, rather than the healthcare organization, are the first to know of a breach. Organizations seeking to proactively detect identity theft and privacy breaches can utilize low-cost on-demand SaaS analytics services.
Download a white paper on patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) FORMER HOSPITAL EMPLOYEE INDICTED FOR CRIMINAL HIPAA VIOLATIONS - www.Justice.gov, 07/03/2014