HIPAA Journal

MARCH 20, 2025

The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. This page is regularly updated to reflect the latest healthcare data breach statistics.

HIPAA 109

HIPAA Ransomware Compliance Hospitals 109

Compliancy Group

SEPTEMBER 18, 2024

The HITECH Act requires the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) to conduct periodic audits of HIPAA covered entity and business associate compliance with the HIPAA Privacy, Security, and Breach Notification Rules. Subsequently, OCR evaluated the effectiveness of the pilot HIPAA audit program.

HIPAA 52

HIPAA Compliance Health Insurance 52

Compliancy Group

AUGUST 24, 2022

This HIPAA covered entity provides treatment for skin, hair, and nail diseases, including acne, eczema, psoriasis, and rashes. Further details of NEDLC’s HIPAA violations and the resulting settlement are provided below. OCR Settles Dermatology HIPAA Violations with NEDLC – Well, That Escalated Quickly. Learn More! ×

HIPAA 52

HIPAA Compliance 52

The Health Law Firm

NOVEMBER 16, 2011

The Office for Civil Rights (OCR) of the US Department of Health and Human Services (HHS) is launching a pilot program this month to make sure covered entities are in compliance with HIPAA privacy and security rules and breach notification standards, according to the OCR. The OCR will perform up to 150 audits to assess HIPAA compliance.

US Department of Health and Human Services 40

US Department of Health and Human Services HIPAA Compliance Hospitals 40

The Health Law Firm

JUNE 28, 2012

New information is available regarding the Office for Civil Rights’ (OCR) initial round of mandated audits of Health Insurance Portability and Accountability Act (HIPAA) covered entities. Initial HIPAA Audits Began November 2011.

HIPAA 40

HIPAA Health Insurance 40

Total HIPAA

SEPTEMBER 30, 2019

HIPAA compliant cloud backup is a must for all businesses that store sensitive data, like PHI ( Protected Health Information ). In this post, we explain the importance of HIPAA compliant cloud backups and review five vendors who offer this service: ArcServe , Carbonite , IDrive , Microsoft Azure , and SpiderOak.

HIPAA 52

HIPAA Compliance Governance Ransomware 52

Compliancy Group

JUNE 12, 2024

In May of 2011, the Texas Legislature attempted to update Chapter 181 of the Texas Health and Safety Code, with new legislation called “ HB 300.” “HB” HB 300 was the 300th House Bill introduced during the legislative session for 2011. HB 300 brought entities that were not regulated by HIPAA, into its regulatory scope.

HIPAA 52

HIPAA Health Insurance Governance Compliance 52

Total HIPAA

JANUARY 18, 2021

Every year, we publish Microsoft’s End of Support list because using up-to-date programming is key for HIPAA compliance. So, what does this mean for users who need to stay HIPAA compliant ? Under the HIPAA Security Rule 45 C.F.R. Dynamics CRM 2011. Dynamics SL 2011. Windows MultiPoint Server 2011 (all editions).

HIPAA 40

HIPAA Compliance 40

HIPAA Journal

NOVEMBER 17, 2022

Affected individuals visited Dr. Marilao between 2010 to 2011, had a last name starting with A through M, and either the parent or child was insured under a Medi-Cal or an HMO plan. The post Patient Data Compromised in 5 Hacking Incidents, Ransomware Attacks, and Break-ins appeared first on HIPAA Journal.

Ransomware 79

Ransomware Health Insurance Fraud HIPAA 79

Hall Render

FEBRUARY 4, 2025

On January 21, 2025, the Department of Homeland Security (“DHS”) rescinded its Protected Areas policy that had been in place since 2011. HIPAA permits, but does not require, disclosures of PHI to law enforcement. This policy largely restricted the U.S. legal, compliance and security).

HIPAA 52

HIPAA Compliance Hospitals Health Insurance 52

HIT Consultant

DECEMBER 26, 2021

As other mandates, including the Health Insurance Portability and Accountability Act (HIPAA) and the Cures Act, all came into play, the need to digitalize records to ensure privacy and confidentiality as well as improve interoperability has forced payors and providers alike to look at data differently. March 2011). Alexandru, A.G.,

Due Diligence 98

Due Diligence Compliance HIPAA Nurses 98

HIT Consultant

FEBRUARY 8, 2023

An open standard called FHIR, which was initially drafted in 2011, makes it easier than ever for legacy systems and new apps to exchange data. FHIR will force a business to reevaluate some security procedures, even if it complies with HIPAA regulations and safeguards patient data. Issues with FHIR security are inevitable.

HIPAA 52

HIPAA Medicaid Medicaid Medicare 52

AIHC

DECEMBER 3, 2024

According to the Bureau of Labor Statistics, there is a 63% increase in the rate of injuries from violent attacks against medical professionals from 2011 to 2018. Routine skills testing, annual HIPAA and compliance training should be included in your volunteer program.

COVID-19 52

COVID-19 Nurses Compliance Hospitals 52

HIT Consultant

JULY 22, 2011

It’s worth noting that compared to all of the business sectors surveyed, healthcare organizations take the most security measures, according to Nathan Coutinho, manager of enterprise server, storage, and virtualization solutions for CDW, which he attributes to federal HIPAA mandates.

Hospitals 40

Hospitals HIPAA Electronic Medical Records Nursing Homes 40

Healthcare IT Today

OCTOBER 28, 2024

2023 was a record year, with 114 data breaches of 100,000 or more records reported to The HIPAA Journal. The cost of responding to and recovering from a breach in this industry has been higher than that of any other sector since 2011, according to a report by IBM and the Ponemon Institute.

Ransomware 112

Ransomware Compliance Hospitals HIPAA 112

HIT Consultant

NOVEMBER 27, 2024

In addition to playing offense and defense on cyberattacks, healthcare organizations must also navigate a complex regulatory web, including HIPAA, which mandates strict safeguards for protected health information (PHI). Before that, they held the position of Product and Support Manager at WPM Education from June 2011 to January 2013.

Due Diligence 52

Due Diligence HIPAA Compliance Ransomware 52

HIPAA Journal

SEPTEMBER 19, 2022

Data Breached by HIPAA Regulated Entity. Health plans were the worst affected HIPAA-regulated entity, with 35 data breaches reported. Data breaches are not always reported by business associates directly, with some HIPAA-covered entities choosing to report breaches at their business associates. North Carolina.

Ransomware 117

Ransomware HIPAA Electronic Medical Records Compliance 117

HIT Consultant

MARCH 24, 2022

Founded in 2011 by a physician and engineers from MIT and Harvard, Podimetrics developed the SmartMat — the only easy-to-use, an at-home mat that a patient steps on for 20 seconds per day. The FDA-cleared and HIPAA-compliant SmartMat are remotely monitored by Podimetrics’ in-house nurse support team.

Nurses 97

Nurses FDA HIPAA Hospitals 97

HIPAA Journal

JULY 3, 2024

Heat is the leading cause of death out of all hazardous weather conditions in the United States and caused an average of 40 workplace fatalities a year between 2011 and 2022. The post OSHA Proposes Heat Injury and Illness Prevention Rule appeared first on The HIPAA Journal.

HIPAA 114

HIPAA Compliance 114

Health Populi

JUNE 14, 2019

For health care privacy, Americans’ HIPAA provisions surely don’t cover personal information that informs health beyond the healthcare claim the way Europeans’ GDPR or the soon-to-be-implemented California Consumer Privacy Act of 2020 do. 2011 – Meeker & Murphy on Mobile – Through the Lens of Health.

Prescription Drug Pricing 110

Prescription Drug Pricing Public Health Health Outcomes HIPAA 110

HIPAA Journal

APRIL 8, 2025

The patient monitor was cleared by the FDA in 2011, and the backdoor had been present for more than 13 years before it was detected. The post House Committee Hears New Concerns About Legacy Medical Device Cybersecurity appeared first on The HIPAA Journal.

FDA 50

FDA HIPAA Governance Hospitals 50