Who enforces HIPAA?

With all the compliance mandates surrounding HIPAA, and the fines that have taken place over the past year, it’s easy to wonder who’s finding all these violations and who’s enforcing HIPAA. The main party enforcing HIPAA is the Department of Health and Human Services Office for Civil Rights, also known …

Anthem Pays Record Settlements After 2015 Security Breach

In late 2018, Anthem Inc., an independent carrier of the Blue Cross and Blue Shield Association, settled two major claims made against them in the wake of a 2015 security breach that exposed the confidential personal and employment data of 79 million people.  The breach that precipated these civil actions occurred when an employee …

HIPAA Settlement Demonstrates Importance of Timely Breach Notification

HIPAA legislation requires that when more than 500 individuals are affected by a breach of protected health information (PHI), covered entities are required to notify the individuals, the media, and the U.S. Department of Health and Human Services Office for Civil Rights (OCR) “without unreasonable delay” and within 60 days. …