HIPAA Privacy Fines

By this time I'm certain you have seen enough Legal Alerts regarding the HIPAA privacy monetary fines that you could wallpaper your living room.  I know I certainly have.  But, does anyone honestly think that the fines were not warranted?  HHS really choose the most egregious violations (access violations and loss of records).  The access violation fine was compounded by an uncooperative covered entity.  HHS did not fine the covered entities for not having proper notices or not having proper written policies.  Rather, HHS choose the most basic of HIPAA privacy rights.  If anything these cases show that covered entities should focus on how HIPAA privacy rights impact the public and patients, as well as to cooperate when government investigators show up at your doorstep.

Latest Thinking

View more Insights
Insights Center
Knowledge assets are defined in the study as confidential information critical to the development, performance and marketing of a company’s core business, other than personal information that would trigger notice requirements under law. For example,
The new study shows dramatic increases in threats and awareness of threats to these “crown jewels,” as well as dramatic improvements in addressing those threats by the highest performing organizations. Awareness of the risk to knowledge assets increased as more respondents acknowledged that their