Health Information Management

HHS imposes first HIPAA fine against a county

HIM-HIPAA Insider, March 24, 2014

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

Skagit County in Washington state has agreed to a $215,000 fine and corrective action plan (CAP) to settle HIPAA violations with HHS. This is HHS’ first settlement with a county government, according to a press release.
An OCR investigation revealed that Skagit County exposed the ePHI of 1,581 individuals when files were moved to a publicly-accessible server maintained by the county. The county also failed to comply with the HIPAA Privacy, Security, and Breach Notification Rules, according to HHS.
The CAP requires Skagit County to provide regular status reports to OCR. It also must establish written policies and procedures, documentation requirements, training, and other measures to comply with HIPAA.
This article originally appeared on HCPro’s HIPAA Update blog. Stay up to date on all things HIPAA by signing up for e-mail updates from this blog.

Want to receive articles like this one in your inbox? Subscribe to HIM-HIPAA Insider!

    Briefings on APCs
  • Briefings on APCs

    Worried about the complexities of the new rules under OPPS and APCs? Briefings on APCs helps you understand the new rules...

  • HIM Briefings

    Guiding Health Information Management professionals through the continuously changing field of medical records and toward a...

  • Briefings on Coding Compliance Strategies

    Submitting improper Medicare documentation can lead to denial of fees, payback, fines, and increased diligence from payers...

  • Briefings on HIPAA

    How can you minimize the impact of HIPAA? Subscribe to Briefings on HIPAA, your health information management resource for...

  • APCs Insider

    This HTML-based e-mail newsletter provides weekly tips and advice on the new ambulatory payment classifications regulations...

Most Popular