Physician practice agrees to $750,000 HIPAA settlement and Corrective Action Plan after laptop stolen from employee's car
Physician Practice Insider, September 8, 2015
Cancer Care Group, P.C., an Indiana-based radiation oncology private physician practice, has agreed to a settlement with the HHS Office for Civil Rights (OCR) after a potential HIPAA violation in the form of a stolen laptop, according to a September 2 HHS press release. In addition to a $750,000 fine, Cancer Care must put in place a robust Corrective Action Plan to address previous insufficiencies identified in its existing compliance program.
The potential breach dates to August 2012, when OCR was alerted to the fact that a laptop bag was stolen from the car of a practice employee. The laptop contained unsecured electronic protected health information in the form of current and former patient names, addresses, dates of birth, Social Security numbers, and insurance and clinical information. Approximately 55,000 people were affected.
An investigation by the OCR uncovered “widespread non-compliance with the HIPAA Security Rule,” according to the press release. The full Resolution Agreement and Corrective Action Plan can be found on the OCR website.
Related Products
-
Physician Practice Perspective
Physician Practice Perspective subscribers can find the archive of issues on the Part B News website. Find more information...
-
Medical Environment Update
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
-
HealthLeaders Media Physician Leaders
HealthLeaders Media Physician Leaders offers commentaries that focus on the hottest issues for doctors as well as concise...
-
Medical Environment Update - Electronic and Print, 1 year
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
-
Medical Environment Update - Electronic, 1 year
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
Most Popular
- Articles
-
- CMS seeks comment on quality measures
- Practice the six rights of medication administration
- Don't forget the three checks in medication administration
- Note similarities and differences between HCPCS, CPT® codes
- Nursing responsibilities for managing pain
- Q&A: Primary, principal, and secondary diagnoses
- CMS creates web portal for questions about 1135 waivers, PHE
- ICD-10-CM coma, stroke codes require more specific documentation
- OB services: Coding inside and outside of the package
- The consequences of an incomplete medical record
- E-mailed
-
- Sneak peek: Evidence-based practices can help improve, enhance case management skills
- Q&A: Pressure ulcer POA code confusion resolved
- Neurological checks for head injuries
- Keyes Q&A: Generator lighting, fire dampers, eyewash stations, ISLM fire drills
- Including 46600 in E/M leveling systems
- How to get reimbursed for restorative nursing
- Fetal non-stress tests represent important part of maternal and fetal health
- Coronavirus vaccination: 4 best practices for communicating with patients
- Coding Clinic reiterates guidelines for provider documentation
- CMS creates web portal for questions about 1135 waivers, PHE
- Searched