Category Archives: Breach

Recent Ransomware Attacks Could be HIPAA Violations

By now, you may have heard about the massive ransomware attack that has struck over 150 countries, including The United States, over the past week. If health care data taken hostage in a ransomware attack is unencrypted, it could constitute a HIPAA violation. Any electronic protected health information (ePHI) that is affected by a breach… Read More »

HIPAA Roundup: Pharmacy Settlements and OCR Investigations

Over the past few years, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has considerably ramped-up its enforcement efforts for HIPAA violations. Pharmacies have continued to be hit with OCR investigations and massive fines for breaches of protected health information (PHI). These investigations are often initiated for minor privacy or… Read More »

Iowa Hospital Uncovers Extensive 7-Year Privacy Breach

After seven years of illegally accessing the protected health information (PHI) of 1,620 patients, an employee at UnityPoint Health’s Allen Hospital in Waterloo, Iowa has been reported to the Department of Health and Human Services (HHS) for federal investigation. Officials at the hospital say that the breach was first uncovered on March 14, 2016. The… Read More »

Buffalo Medical Group Denies Alleged “HIPPA” Violations

Receiving HIPAA breach notification letters in the mail has become a disappointingly commonplace occurrence for many Americans over the past few years. In a single breach alone last February, as many as 80 million individuals had their protected health information (PHI) breached by Anthem. HIPAA regulation mandates that breaches be reported to affected patients informing… Read More »

Physical Therapy Provider Settles with OCR for $25,000 in PHI Breach

On February 16, 2016, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced it had reached a settlement with Complete P.T., Pool & Land Physical Therapy, Inc. (CPT) after the organization exposed the protected health information (PHI) of a number of its patients. CPT, a California-based physical therapy practice,… Read More »