Thursday, December 10, 2015

$850K Settlement for Alleged Healthcare Privacy Violations

A healthcare system in Massachusetts has agreed to pay an $850,000 settlement to the Department of Health and Human Services (HHS) Office of Civil Rights (OCR) for alleged security and privacy violations.

In addition, the OCR said the healthcare organization failed to meet HIPAA criteria on risk analysis and as part of the settlement, they must also perform an organization-wide risk analysis and submit the analysis and a risk management plan to OCR.

"OCR said [the healthcare organization] failed to meet HIPAA criteria on risk analysis."
-iHealheBeat.org
Healthcare organizations seeking to detect data privacy breaches and identity theft, even if it occurs only once, can utilize identity and access analytics.
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by insiders such as employees, contractors, providers, and vendors.
Sources:
(a) Health Care Organizations Report Data Breaches, Settlements - www.iHealthBeat.org, 12/08/2015

No comments:

Popular Posts

Copyright © 2010-2011 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.