Corporate Compliance

UCLA Health System settles with OCR for $865,500

Compliance Monitor, July 27, 2011

The Department of Health and Human Services (HHS) entered into its third largest settlement for potential HIPAA privacy and security rule violations July 5. HHS reached a resolution agreement of $865,500 with the University of California at Los Angeles Health System (UCLAHS).

UCLAHS also committed to a corrective action plan in order to fix “gaps in its compliance” with HIPAA’s privacy and security rules, according to a report on the HHS website published July 6.

The Office for Civil Rights (OCR), which enforces HIPAA under HHS, investigated the health system following separate complaints filed by two celebrity patients. OCR said UCLAHS employees repeatedly and without permissible reason looked at their electronic PHI in addition to other UCLAHS patients.

Read more on HIPAA Update.

Most Popular