Northeast Radiology Settles HIPAA Violations for $350,000 After Data Breach
BankInfoSecurity
|
Contributed by: Drex DeFord
Summary
Northeast Radiology has agreed to a $350,000 settlement to resolve potential HIPAA violations stemming from a hacking incident that compromised the data of nearly 300,000 patients. The U.S. Department of Health and Human Services' Office for Civil Rights found that the practice failed to perform an adequate risk analysis to protect electronic protected health information. The settlement mandates a corrective action plan, which will be monitored for two years, and requires the practice to conduct a comprehensive HIPAA security risk analysis.
