There were several multimillion dollar HIPAA settlements this year, including the largest settlement to-date. Here is a summary of the worst incidents.
Last year, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) only levied six settlements against healthcare entities for HIPAA violations related to the improper handling and unauthorized exposure of patients' protected health information (PHI) and electronic PHI (ePHI). This year, though, has seen that number double with more than half of the settlements valued at greater than $1.5 million. Here are the details of the worst HIPAA-related incidents of the year. Click here to download a PDF of this slideshow.Steph Weber is a freelance writer hailing from the Midwest. She writes about healthcare, finance, and small business, but finds her passion for the medical field growing in sync with the ever-changing healthcare laws.
HIPAA highlights: 2 disturbing class actions, OCR risk analysis enforcement
April 24th 2025Two class-action lawsuits targeting the University of Maryland Medical Center and the University of Kansas Health System for years-long cyberstalking and unauthorized access to protected health information spotlight massive HIPAA risk-analysis failures and underscore the urgent need for stronger health care cybersecurity safeguards.
HIPAA highlights: 2 disturbing class actions, OCR risk analysis enforcement
April 24th 2025Two class-action lawsuits targeting the University of Maryland Medical Center and the University of Kansas Health System for years-long cyberstalking and unauthorized access to protected health information spotlight massive HIPAA risk-analysis failures and underscore the urgent need for stronger health care cybersecurity safeguards.
2 Commerce Drive
Cranbury, NJ 08512