Electronic Medical Records Company Settles with OCR for HIPAA Violation

An electronic medical records company recently settled with the Office of the Civil Rights (“OCR”) for violating the Health Insurance Portability and Accountability Act (“HIPAA”) following a discovery of a cyberattack on its servers which contained the protected health information (PHI) of approximately 3.5 million individuals.

Continue reading »

Late Breach Notification Leads to Half a Million Dollar HIPAA Settlement

Failure by a covered entity to timely report a breach of protected health information (PHI) resulted in the first of its kind settlement in the amount of $475,000.

Continue reading »

Another HIPAA Settlement With a Pharmacy for $125,000

The Office of the Civil Rights (OCR) within the US Department of Health and Human Services recebtly settled a HIPAA violation case with a single location compounding pharmacy in Denver, Colorado. This is yet another HIPAA settlement underscoring the importance of properly implementing and maintaining a compliance plan.

Continue reading »