Security | Compliance | Certification
866-276-8309 or info@ehr20.com

Archive for the HIPPA/HITECH Penalties Category

Colorado hospital failed to terminate former employee’s access to ePHI

Colorado hospital failed to terminate former employee’s access to ePHI

Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security rules requires all healthcare covered entities and their business associates to conduct security risk analysis of their IT infrastructure annually and with any change in process or system. As part of HIPAA rules, all covered entities and their business associates are required to have proper procedure in place to terminate any employees.
Pagosa Springs Medical Center (PSMC) has agreed to pay $111,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services and to adopt a substantial corrective action plan to settle potential HIPAA violations

Read more

Florida contractor physicians’ group shares protected health information with unknown vendor without a business associate agreement

December 8,2018 – Advanced Care Hospitalists PL (ACH) has agreed to pay $500,000 to the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) and to adopt a substantial corrective action plan to settle potential violations of the Health Insurance Portability

Read more

Allergy practice pays $125,000 to settle doctor’s disclosure of patient information to a reporter

November 26, 2018-Allergy Associates of Hartford, P.C.(Allergy Associates), has agreed to pay $125,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to adopt a corrective action plan to settle potential violations of the Health Insurance Portability and

Read more

Security Risk Analysis for 2018 MACRA/MIPA Reporting

The Medicare Access and CHIP Reauthorization Act of 2015 (MACRA) replaced three quality programs (the Medicare Electronic Health Record (EHR) Incentive program, the Physician Quality Reporting System (PQRS), and the Value-Based Payment Modifier (VM) with the Quality Payment Program. This one program will give Medicare physicians and clinicians a chance

Read more

HIPAA Fine for Lack of Timely Breach Notification 

The U.S. Department of Health and Human Services, Office for Civil Rights (OCR), has announced the first Health Insurance Portability and Accountability Act (HIPAA) settlement of 2017 based on the untimely reporting of a breach of unsecured protected health information (PHI).  Presence Health has agreed to settle

Read more

UMass settles potential HIPAA violations following malware infection

The University of Massachusetts Amherst (UMass) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules. The settlement includes a corrective action plan and a monetary payment of $650,000, which is reflective of the fact that

Read more

HIPAA Violation Fines: Unauthorized Filming Results in $2.2 Million Settlement

New York Presbyterian Hospital has reached a settlement with the Office for Civil Rights (OCR) to pay $2.2 million HIPAA violation fine for the unauthorized disclosure of two patients Protected Health Information (PHI). The PHI was released to film crews and staff during the filming of an

Read more

Subscribe

Upcoming Events

  1. HIMSS 19 Conference & Exhibition

    February 11 - February 15
  2. SOC 2 Requirements and Certifications

    February 13 @ 1:00 pm - 2:00 pm