Physician practice agrees to $750,000 HIPAA settlement and Corrective Action Plan after laptop stolen from employee's car
Physician Practice Insider, September 8, 2015
Cancer Care Group, P.C., an Indiana-based radiation oncology private physician practice, has agreed to a settlement with the HHS Office for Civil Rights (OCR) after a potential HIPAA violation in the form of a stolen laptop, according to a September 2 HHS press release. In addition to a $750,000 fine, Cancer Care must put in place a robust Corrective Action Plan to address previous insufficiencies identified in its existing compliance program.
The potential breach dates to August 2012, when OCR was alerted to the fact that a laptop bag was stolen from the car of a practice employee. The laptop contained unsecured electronic protected health information in the form of current and former patient names, addresses, dates of birth, Social Security numbers, and insurance and clinical information. Approximately 55,000 people were affected.
An investigation by the OCR uncovered “widespread non-compliance with the HIPAA Security Rule,” according to the press release. The full Resolution Agreement and Corrective Action Plan can be found on the OCR website.
Related Products
-
Physician Practice Perspective
Physician Practice Perspective subscribers can find the archive of issues on the Part B News website. Find more information...
-
Medical Environment Update
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
-
HealthLeaders Media Physician Leaders
HealthLeaders Media Physician Leaders offers commentaries that focus on the hottest issues for doctors as well as concise...
-
Medical Environment Update - Electronic and Print, 1 year
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
-
Medical Environment Update - Electronic, 1 year
A subscription to Medical Environment Update pays for itself by saving you time sorting through complex regulations and...
Most Popular
- Articles
-
- Don’t forget the three checks in medication administration
- Note similarities and differences between HCPCS, CPT® codes
- Differentiate between types of wound debridement
- OB services: Coding inside and outside of the package
- Practice the six rights of medication administration
- Know guidelines and subtle differences in code descriptions for laceration repairs
- What is the difference between an IPA and a medical group?
- Complications from immobility by body system
- What does case-mix index mean to you?
- Neurological checks for head injuries
- E-mailed
-
- Report condition code 51 for nondiagnostic services unrelated to inpatient stay
- Sounds like you’re going to have to push a little more paper next survey
- What is the difference between an IPA and a medical group?
- Tip: Reporting vascular dementia in ICD-10-CM
- Safety Month showcase: Steps for when a worker is exposed to bloodborne pathogens
- Report anesthesia charge using revenue code 370 and no HCPCS
- Q/A: Understand requirements for separately reporting CBC with manual differential
- Note similarities and differences between HCPCS, CPT® codes
- Capturing start and stop times for infusions
- Searched