Major Fines for HIPAA Related Security Breaches

Not staying up to date with your security responsibilities can have a huge impact on your practice. Not just in monetary punishments but in the lost trust of your patients and their families. Idaho State University recently agreed to pay $400,000 to the HHS Office for Civil Rights to settle allegations of HIPAA privacy and security rule violations. ISU had not conducted a HIPAA security risk analysis for more than five years, even after they suffered an IT breach at their Pocatello Family Medicine Clinic.

Something as simple as an IT security audit could have saved them hundreds of thousands of dollars and protected the private patient information that they were entrusted with.

Other organizations have been forced to pay major fines to the Office of Civil Rights following IT security breaches:

UCLA Health Systems $865,000
Massachusetts General Hospital $1 million
Cignet Health $4.3 million
Rite Aid $1 million
CVS/pharmacy $2.2 million
Providence Health & Services $100,000
The Hospice of North Idaho $50,000

Don’t leave your clinic open to the possibility of an IT breach and all of the harm to your finances and reputation. Protect yourself and your patients. Call ITPAC today.