HIPAA violations are real and can end up costing the covered entity millions of dollars. In fact, data breaches continue rising year by year. In 2009, there were only 18 healthcare data breaches of 500 or more records, while there were 510 in 2019. That’s right – 2019 had the most data breaches reported in history, and the second worst year in breached records.
Shocked? Don’t be. Cybercriminals are very busy in their attempts to extract sensitive personal data, and employees of these covered entities also unknowingly lend a hand in data breaches on a consistent basis. Based on the records, in a number of cases they have succeeded. Here are some of the most recent HIPAA violations:
Cottage Health was fined and settled for $3 million dollars for violation of HIPAA rules
Touchstone Medical Imaging was fined and settled $3 million dollars for exposing over 300,000 patient-protected health information
- Medical Informatics Engineering was fined and settled $100,000 for HIPAA breach
Bayfront Health St. Petersburg was fined and settled $85,000 for right of access initiative
Jackson Heath System was fined and settled $2.15 million civil money penalty for HIPAA violations
- University of Rochester Medical Center was fined and settled $3 million dollars for failure to encrypt mobile devices
- Texas Health and Human Services Commission was fined $1.6 million civil money penalty for HIPAA violations
- Sentara Hospitals was fined and settled $2.175 million after failing to properly notify HHS of a breach of unsecured PHI
- Korunda Medical was fined and settled $85,000 in HIPAA right of access initiative
- West Georgia Ambulance was fined and settled $65,000 in allegations of longstanding HIPAA noncompliance
As a result, the Department of Health and Human Services has increased their monetary civil penalties for HIPAA violations in November 2019. HIPAA violations are very serious and should never be taken lightly.