HIPAA Journal is the leading provider of news, updates, and independent advice for HIPAA compliance

HIPAA Violation Articles

HIPAA Articles

Listed below are a selection of HIPAA articles providing further information and guidance on HIPAA compliance for healthcare providers, health plans, healthcare clearinghouses, and business associates of covered entities. These articles include clarifications of HIPAA Rules, proposed updates, and new guidance released by the Department of Health and Human Services’ Office for Civil Rights, the Centers for Medicare and Medicaid Services, the Food and Drug Administration, Federal Trade Commission, National Institute for Standards and Technology (NIST) and other public and private sector organizations.

Final FDA Premarket Guidance for Medical Device Manufacturers on Secure Data Exchange

OCR Issues Guidance on the Correct Response to a Cyberattack

Guidance on Securing Wireless Infusion Pumps Issued by NIST

Get The Checklist

Free and Immediate Download
of HIPAA Compliance Checklist

Delivered via email so verify your email address is correct.

Your Privacy Respected

HIPAA Journal Privacy Policy

OCR Updates HIPAA Privacy Rule Guidance for Healthcare Professionals

FDA Issues Final Cybersecurity Guidance for Medical Device Manufacturers

FTC Releases Data Breach Response Guidance

Guidance on HIPAA and Cloud Computing Issued by HHS

ONC Guidance for Negotiating EHR Contracts

Ransomware Guidance Issued by OCR

OCR Issues Guidance on Health App Use

OCR Issues Guidance on Telehealth and HIPAA During Coronavirus Pandemic

OCR Issues Guidance on Allowable Disclosures of PHI to First Responders During the COVID-19 Crisis

OCR Issues Guidance on Media and Film Crew Access to Healthcare Facilities

Guidance on Contacting COVID-19 Patients to Request Blood and Plasma Donations

OCR Issues Guidance on Disclosures of PHI to Health Information Exchanges under HIPAA

HIPAA Violation News Articles

Our HIPAA violation news articles provide further information on confirmed HIPAA violations, civil monetary penalties for HIPAA violations, and settlements reached with covered entities by the HHS’ Office for Civil Rights, state attorneys general, and other regulators. You will also find details of lawsuits that have been filed over HIPAA Privacy, Security and Breach Notification Rule violations.

2020 HIPAA Violation Cases and Penalties

HIPAA Enforcement by State Attorneys General

OCR Imposes 2nd Largest Ever HIPAA Penalty of $6.85 Million on Premera Blue Cross

Excellus Health Plan Settles HIPAA Violation Case and Pays $5.1 Million Penalty

M.D. Anderson Cancer Center Has $4.3 Million OCR HIPAA Fine Overturned on Appeal

Vermont Attorney General Settles Breach Case with Tech Company

Anthem Settles Class Action Lawsuit over World’s Largest Healthcare Data Breach

Center for Children’s Digestive Health Settlement for Business Associate Agreement Failures

OCR Announces Record $5.5 Million HIPAA Settlement with Memorial Healthcare Systems

MAPFRE Life Assurance Company Agrees $2.2 Million HIPAA Settlement

$475,000 Settlement Agreed for Breach Notification Rule Violation

$400,000 Settlement Agreed for Lack of a HIPAA-Compliant BAA

OCR Announces $5.5 Million HIPAA Settlement with Advocate Health Care Network

University of Mississippi to Pay OCR $2.75 Million to Resolve HIPAA Violation Case

HIPAA Breach Articles

Our HIPAA breach articles section contains reports of healthcare data breaches that have impacted more than 500 individuals, including hacking and IT incidents, improper disposal of physical protected health information, loss and theft of devices containing ePHI, unauthorized disclosures of PHI and other insider and third-party errors that have resulted in the exposure or theft of sensitive health data.

Largest Healthcare Data Breaches in 2020

Jail Terms for HIPAA Violations by Employees

What are the Penalties for HIPAA Violations?

AMCA Data Breach Victim Count Swells to Almost 25 Million Records

PeaceHealth Employee Accessed Medical Records Without Authorization for Almost 6 Years

Ransomware Attack Potentially Impacts 128,000 Arkansas Patients

Florida Healthy Kids Corporation Announces 2,000 Patients’ Impacted by Phishing Scam

5 Months to Notify Patients of Augusta University Medical Center Phishing Attack

Hospital Employee Fired Over 26,000-Record Arkansas DHS Privacy Breach

Hand Rehabilitation Specialists Suffers Breach of Almost 13,000 Patients’ PHI

106,000 Mid-Michigan Physicians’ Patients Potentially Impacted by Breach

Third-Party Mailing Error Sees Aetna Plan Members’ HIV Status Disclosed

4-Month Data Breach Discovered During Ransomware Investigation: 300,000 Patients Impacted