Banner Health to pay $1.25M over HIPAA Security Rule lapses
By 
Jeff Dale2023-02-08T18:58:00
A Phoenix-based nonprofit health system agreed to pay $1.25 million as part of a settlement with the Department of Health and Human Services (HHS) addressing violations of the Health Insurance Portability and Accountability Act Security Rule regarding a 2016 data breach.
The breach at Banner Health compromised the protected health information of 2.81 million consumers, the HHS stated in a Feb. 2 press release. The hacker accessed data that included patient names, physician names, dates of birth, addresses, Social Security numbers, clinical details, dates of service, claims information, lab results, medications, diagnoses and conditions, and health insurance information.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefHHS orders L.A. Care to pay $1.3M over apparent HIPAA violations
L.A. Care Health Plan agreed to pay $1.3 million to settle allegations by the U.S. Department of Health and Human Services it potentially violated the Health Information Portability and Accountability Act.
-
News BriefHHS creates new enforcement office for health privacy
The Department of Health and Human Services and its office responsible for enforcing health privacy reorganized so it can sharpen enforcement of cybersecurity and data breaches.
-
PremiumHHS proposal aims to ‘shine a light’ on nursing home ownership
It is still too early in the rulemaking process to know what will be included in the Biden administration’s final rule on transparency of nursing home ownership, but there are some steps facilities can take to prepare, according to experts.
More from Regulatory Enforcement
-
ArticleFrench investigators target anticompetitive practices in largest accounting firms
Major accountancy firms in France are under investigation for anti-competitive practices. The French competition watchdog embarked on a series of “unannounced inspections” and removed documents relating to audit and reporting on Jan. 13.
-
ArticleEU investigation into Grok may expose problems with DSA rather than compliance failings
The European Commission has launched a formal investigation against Elon Musk’s X under the Digital Services Act over fears that its AI tool Grok may be producing and disseminating illegal material.
-
ArticleFormer ADM execs inflated operating profits, SEC alleges
Three former executives at Archer-Daniels-Midland intentionally misled investors by inflating the performance of the company’s Nutrition unit, the U.S. Securities and Exchange Commission has alleged.