Another HIPAA Penalty: $1.6 Million for Breach of ePHI
November 12, 2019 | Ada Kozicz | Cybersecurity | Electronic Health Records | HIPAA | LitigationThe U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced on November 7 that it imposed a $1.6 million monetary penalty against the Texas Health and Human Services Commission for violations of the HIPAA Privacy and Security Rules. The Commission operates several health and public need facilities and also administers many public assistance programs.
One of the programs that the Commission administers provides long-term care services for the aging and disabled, a program that was previously administered by the Department of Aging and Disability Services (DADS). DADS was reorganized into the Commission in 2017. In 2015, DADS reported a HIPAA breach to OCR after electronic protected health information (ePHI) of 6,617 people was accessed without proper authorization. The ePHI involved in the breach included names, addresses, social security numbers and treatment information. The breach was caused by a software flaw that allowed access to the ePHI without proper access credentials when certain files were moved from a private to a public server.
After investigating the incident, OCR concluded that DADS failed to conduct an enterprise-wide HIPAA risk analysis after the breach, and failed to implement certain access controls and protections as required by the HIPAA Security Rule. The Commission, as the successor now administering the DADS program, is obligated to pay the $1.6 million penalty.
MORE NEWS ON HIPAA
Eric Fader contributed to Healthcare Risk Management’s HIPAA Regulatory Alert, which appeared in the publication’s December 2019 issue. The Alert outlines...
Read MoreThe U.S. Department of Health and Human Services (HHS) recently released a new version of its security risk assessment (SRA)...
Read MoreThe U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) announced on November 5 that the University...
Read More- Affordable Care Act
- Antitrust
- Cannabis
- Cybersecurity
- Electronic Health Records
- Employer/Employee
- False Claims Act
- FDA
- Fraud and Abuse
- HIPAA
- Home Health
- Hospitals
- Legislation and Public Policy
- Litigation
- Medical Devices and Wearables
- Medicare and Medicaid
- Pharmaceuticals
- Private Insurers
- Tax/IRS
- Telehealth
- Affordable Care Act
- Antitrust
- Cannabis
- Cybersecurity
- Electronic Health Records
- Employer/Employee
- False Claims Act
- FDA
- Fraud and Abuse
- HIPAA
- Home Health
- Hospitals
- Legislation and Public Policy
- Litigation
- Medical Devices and Wearables
- Medicare and Medicaid
- Pharmaceuticals
- Private Insurers
- Tax/IRS
- Telehealth
- Jennifer Abreu
- Christopher D. Acosta
- Brian R. Ade
- Ashley (Osadon) Algazi
- Donald R. Allard
- Mark N. Antar
- Patrick E. Antonikowski
- Steven J. Auletta
- Michael A.L. Balboni
- Khoren Bandazian
- Timothy J. Bang
- Brian L. Bank
- Nicholas P. Baran
- Angelica M. Barcsansky
- Noah M. Becker
- Todd Belous
- Bruce A. Bendix
- Yonatan Bernstein
- Christina M. Bezas
- Michelle A. Bholan
- Merril S. Biscone
- Stuart M. Bodoff
- J’Naia L. Boyd
- Jonathan B. Bruno
- Jacqueline (Mecchella) Bushwack
- John P. Campana
- Michael C. Cannata
- Margarita Christoforou
- Brian S. Conneely
- Peter C. Contino
- William Cornachio
- Michael J. Cunningham
- Louis D`Amaro
- George K. DeHaven
- Catalina E. De La Hoz
- Nancy A. Del Pizzo
- Thomas V. DeMarco
- Janice J. DiGennaro
- Christine DiGregorio
- Cassandra Rivais DiNova
- John K. Diviney
- Alan C. Eagle
- Glenn H. Egor
- Scott A. Eisenmesser
- Joanne M. Engeldrum
- Andrew S. Epstein
- Harvey S. Epstein
- Eric D. Fader
- Ade A. Famojuro
- Jeannine M. Farino
- Brian L. Feld
- Scott L. Feuer
- James R. Finn
- Kaitlyn E. Flynn
- Matthew D. Fox
- Richard A. Frankel
- Avigael C. Fyman
- Jenna Z. Gabay
- Anthony R. Gambardella
- Max Gershenoff
- Frank J. Giliberti
- David I. Gise
- Erez Glambosky
- Ryan Goldberg
- Stacey L. Goldstein
- Jeffrey P. Gorak
- Stuart I. Gordon
- Paul Gorfinkel
- Sean Gorton
- Jeffrey S. Greener
- David M. Grill
- Keith S. Grover
- Walter J. Gumersell
- Jason B. Gurdus
- Amanda Gurman
- Penny Hahn
- Lawrence S. Han
- Tamika Hardy
- Michael J. Heller
- Steven T. Henesy
- Katherine A. Heptig
- Claudia Hinrichsen
- Frank Holahan
- Jeremy B. Honig
- Carol A. Hyde
- Deborah M. Isaacson
- Robert H. Iseman
- Frank P. Izzo
- B. Edward Jaffe
- Michael J. Jones
- Geoffrey R. Kaiser
- Priscilla D. Kam
- Gene Y. Kang
- George D. Kappus
- Jay D. Kenigsberg
- Robert C. Kern, Jr.
- Donald Kernisant Jr.
- Cheryl F. Korman
- Yaron J. Kornblum
- Michael A. Kotula
- Ada Kozicz
- Evan H. Krinick
- Jason M. Kurland
- Christopher J. Kutner
- James P. Lagios
- Matthew A. Lampert
- Marie A. Landsman
- Carol A. Lastorino
- Yale A. Leber
- Stella Lellos
- David P. Leno
- Alexander Lev
- Barry I. Levy
- Lawrence A. Levy
- Shari Claire Lewis
- David Lobl
- Ora L. Lupear
- Paul V. Majkowski
- Benjamin P. Malerba
- Robert A. Maloney
- Greg E. Mann
- Henry M. Mascia
- Sean McAloon
- John M. McFaul
- Peter P. McNamara
- Howard M. Merkrebs
- Steven R. Miller
- Gregory D. Miller
- Siobhain P. Minarovich
- Frank M. Misiti
- Michael C. Mulè
- Laura J. Mulholland
- John P. Mulvaney
- Kenneth C. Murphy
- Jeffrey M. Murphy
- Anne M. Murray
- Philip Nash
- Kenneth A. Novikoff
- Patrick R. O`Mea
- Colleen A. O’Neil
- Julie Ovicher
- John Panagopoulos
- Alexander G. Pappas
- Ana Parikh
- Janine L. Peress
- Michelle Peretz
- Albert W. Petraglia
- Jenna M. Pettograsso
- Justin M. Piccione
- Vincent J. Pontrello
- Lisa Bordoff Procopio
- John F. Queenan
- Evan Rabinowitz
- Frank Raia
- David E. Richman
- Michele R. Rita
- Pia E. Riverso
- John L. Rivkin
- Leonard L. Rivkin
- John J. Robertelli
- Jason M. Romeo
- Burton R. Ross
- Michael R. Rudick
- Jeffrey P. Rust
- Alan S. Rutkin
- Andrea C. Sacks
- Eric Santos
- Keegan B. Sapp
- William M. Savino
- Evan R. Schieber
- Brian S. Schlosser
- Michael Schnepper
- Thomas P. Schulz
- Garin Scollan
- Steven Shapiro
- Wendy Hoey Sheinberg
- Joshua D. Sibble
- Sean N. Simensky
- Michael A. Sirignano
- Stephen J. Smirti, Jr.
- Joshua D. Smith
- Joseph N. Salomon
- Karen E. Sosler
- Matthew V. Spero
- Eric S. Strober
- Joshua M. Tare
- Stanley J. Tartaglia, Jr.
- Frank P. Tiscione
- Norman L. Tolle
- Michael A. Troisi
- Robert Tugander
- Michael J. Twersky
- Marc S. Ullman
- Frank A. Valverde
- Michael Vanunu
- Michael P. Versichelli
- Mark J. Wagner Jr.
- Stephen B. Weissman
- Michael P. Welch
- Amy S. Wiedmann
- David S. Wilck
- Dennis Wiley
- Andrew L. Williams
- Steven M. Zuckermann
- Alexander Zugaro
- Rivkin Rounds Staff
- Author Test