Lost Backup Device Costs Medical Practice $750,000

File this story under “HIPAA Horrors.”

A radiation oncology group in Indiana has agreed to pay $750,000 to settle potential HIPAA violations, says HHS. The problem started with a laptop bag stolen from a practice employee’s car three years ago. The laptop itself did not contain ePHI, but the stolen laptop bag also contained a backup device housing names, Social Security numbers, insurance information and other details for 55,000 patients.

So it was an accident, right? Why the huge fine? Back when the laptop was stolen, the practice hadn’t done a HIPAA risk analysis and didn’t have a privacy compliance policy that warned employees not to take devices containing ePHI out of the facility.

Feeling like a HIPAA risk assessment is long overdue at your health care organization? Go here to start solving the problem.

More HIPAA Help via this on-demand webinar:

Fact or Fiction: 12 HIPAA Myths that Threaten the Safety of Your PHI and Payments

Let’s Connect

Drop a line for our sales representative to get in touch with you

  • This field is for validation purposes and should be left unchanged.

Latest Article

images

Best Practices in RCM Services : Optimizing Your Front Office

  • 14 Apr 2021

Key Takeaways

  • Full potential for revenue cycle starts with an optimized front office
  • Scheduling, pre-registration, insurance verification, authorization, p...

images

Overpayments and Underpayments: What You Need to Know

  • 12 Apr 2021

Key Takeaways:

  • Quarterly self-audits will help you identify underpayments and overpayments.
  • You must self-report overpayments within 60 days of becoming aw...

images

EMRs For Specialty Contact Lenses: How To Select The Right One For Your Practice

  • 12 Mar 2021

Look for EMRs With Many Detailed Touches, Good User Interfaces, And Adaptability to Special Circumstances For some optometrists, myself included, the apex of the doctor-patient ...

test
test