• Contact
  • 888-54-FIRST
  • Client Login
    • Client Portal
    • Online Store
Search
First Healthcare Compliance
  • Solutions
    • Compliance Management Software
    • Online Compliance Courses
    • Compliance Management Suite
  • Plans
  • Resources
    • Blog
    • Virtual Education Hub
    • 1st Talk Compliance Podcast
    • Connect Magazine
    • Compliance Posters
    • Healthcare Compliance Books
    • Newsletter Signup
  • News & Events
    • Press Releases
  • Our Team
  • Request Demo
  • Menu Menu
  • Shopping Cart Shopping Cart
    0Shopping Cart

Blog

HIPAA Compliance or Else

May 10, 2013/in 1st Healthcare Compliance, Affordable Care Act, Blog, HIPAA

The U.S. Dept of Health & Human Services, Office of Civil Rights (OCR), enforces HIPAA and HITECH security regulations. Below are three examples of incidents and fines reported to Congress in 2012. The common denominator is that none of the three practices demonstrated that they had procedures in place to minimize the risk of exposing patient health information.  OCR will be auditing physician practices going forward to ensure compliance. It is important to consider compliance measures to prevent HIPAA violations, but equally important to take steps that prove your continuous commitment of time, effort and resources to an effective compliance program.

Example 1

Phoenix Cardiac Surgery, a five physician practice, agreed to pay $100,000 to resolve charges that it violated the Health Insurance Portability & Accountability Act (HIPAA). A complaint had been filed alleging that the practice was posting surgery and appointment schedules on an internet-based calendar that was publicly accessible. Upon review, HHS office concluded that the practice had done little to comply with HIPAA since the regulations were implemented in 2003/4.

Example 2
The Hospice of North Idaho agreed to pay $50,000 to settle potential HIPAA violations due to a laptop being stolen in June 2010. The unencrypted laptop contained electronic protected health information (PHI) of 441 patients. The Office of Civil Rights (OCR) determined that the practice had not conducted a risk analysis to safeguard electronic PHI.

Example 3
Massachusetts Eye & Ear Infirmary and Eye and Ear Associates agreed to pay $1.5 million to settle potential HIPPA violations following a breach report submitted by the practice to report the theft of an unencrypted personal laptop. The laptop contained electronic PHI of patients and research subjects. Upon investigating, the OCR found that the practice had not taken the necessary steps to comply with the HIPAA requirements.

 

What is the message from the government? Demonstrate a proactive and ongoing approach to mitigating risks associated with patient privacy regulations

Tags: 1st HCC, compliance, HIPAA, OCR
Share this
  • Share on Facebook
  • Share on X
  • Share on LinkedIn
  • Share on Reddit
  • Share by Mail
https://1sthcc.com/wp-content/uploads/2022/10/1sthcc-logo-1024x378.jpg 0 0 Catherine Short https://1sthcc.com/wp-content/uploads/2022/10/1sthcc-logo-1024x378.jpg Catherine Short2013-05-10 09:20:262025-04-15 12:58:10HIPAA Compliance or Else
You might also like
cybersecurity, data privacy, and electronic discovery Use the Safer Guides to Assess Your EHR Safety
HIPAA and Health Apps
cybersecurity, data privacy, and electronic discovery ICD-10 Implementation FAQs
Q&A: HIPAA Compliance for Business Associates
cybersecurity, data privacy, and electronic discovery Updates on Data Privacy Regulations
cybersecurity, data privacy, and electronic discovery What Would The Office Of Civil Rights Most Likely Find In a HIPAA/HITECH Audit?

Subscribe to Weekly eNewsletter

Get the latest healthcare compliance updates straight to your inbox.

Subscribe to Newsletter

Recent Posts

  • Navigating the HIPAA Security Landscape: A Comprehensive Guide to Security Risk Assessments
  • OSHA Recordkeeping in Healthcare: Answers to Frequently Asked Questions
  • Naughty or Nice? The Rules of Giving and Receiving in Healthcare
  • fraud waste abuse healthcare compliance
    FWA in Healthcare: How to Respond Appropriately to Detected Offenses
  • Infographic: 6 Areas of Potential Liability for Healthcare Providers
    6 Areas of Potential Liability for Healthcare Providers
  • 5 Benefits of Automating Incident Reporting in Healthcare

 

First Healthcare Compliance is a division of Panacea Healthcare Solutions. Learn more

Subscribe

Get the latest healthcare compliance updates straight to your inbox.

Subscribe to Newsletter

Connect

Get started: Request Demo

Call: 1-888-54-FIRST

E-mail: Contact us

  • Link to Instagram
  • Link to Youtube
  • Link to Facebook
  • Link to LinkedIn
  • Link to X
© Copyright 2026 Panacea Healthcare Solutions, LLC | Disclaimer | Privacy Policy and Copyright Notice
Scroll to top Scroll to top Scroll to top

We and our third-party partners use cookies to improve and personalize your experience on the site and with our services in addition to delivering and reporting on ads. Please visit our Privacy Statement for more information. By continuing to browse the site, you are agreeing to our use of cookies. Read Privacy Statement.

OKDismiss

Cookie and Privacy Settings



How we use cookies

We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.

Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.

Essential Website Cookies

These cookies are strictly necessary to provide you with services available through our website and to use some of its features.

Because these cookies are strictly necessary to deliver the website, refusing them will have impact how our site functions. You always can block or delete cookies by changing your browser settings and force blocking all cookies on this website. But this will always prompt you to accept/refuse cookies when revisiting our site.

We fully respect if you want to refuse cookies but to avoid asking you again and again kindly allow us to store a cookie for that. You are free to opt out any time or opt in for other cookies to get a better experience. If you refuse cookies we will remove all set cookies in our domain.

We provide you with a list of stored cookies on your computer in our domain so you can check what we stored. Due to security reasons we are not able to show or modify cookies from other domains. You can check these in your browser security settings.

Other external services

We also use different external services like Google Webfonts, Google Maps, and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.

Google Webfont Settings:

Google Map Settings:

Google reCaptcha Settings:

Vimeo and Youtube video embeds:

Privacy Policy

You can read about our cookies and privacy settings in detail on our Privacy Policy Page.

Privacy Policy and Copyright Notice
Accept settingsHide notification only