Banner Health to pay $1.25M over HIPAA Security Rule lapses
By 
Jeff Dale2023-02-08T18:58:00
A Phoenix-based nonprofit health system agreed to pay $1.25 million as part of a settlement with the Department of Health and Human Services (HHS) addressing violations of the Health Insurance Portability and Accountability Act Security Rule regarding a 2016 data breach.
The breach at Banner Health compromised the protected health information of 2.81 million consumers, the HHS stated in a Feb. 2 press release. The hacker accessed data that included patient names, physician names, dates of birth, addresses, Social Security numbers, clinical details, dates of service, claims information, lab results, medications, diagnoses and conditions, and health insurance information.
Related articles
-
News BriefHHS orders L.A. Care to pay $1.3M over apparent HIPAA violations
L.A. Care Health Plan agreed to pay $1.3 million to settle allegations by the U.S. Department of Health and Human Services it potentially violated the Health Information Portability and Accountability Act.
-
News BriefHHS creates new enforcement office for health privacy
The Department of Health and Human Services and its office responsible for enforcing health privacy reorganized so it can sharpen enforcement of cybersecurity and data breaches.
-
PremiumHHS proposal aims to ‘shine a light’ on nursing home ownership
It is still too early in the rulemaking process to know what will be included in the Biden administration’s final rule on transparency of nursing home ownership, but there are some steps facilities can take to prepare, according to experts.
More from Regulatory Enforcement
-
ArticleCFTC clears deck of ‘compliance’ enforcement actions to focus on fraud
BNY, Citigroup, Santander, UBS, and two other financial institutions paid a total of $8.3M to settle separate compliance violations with the CFTC.
-
News BriefHong Kong securities regulator hits repeat offender Deutsche Bank with $3M fine
Deutsche Bank has agreed to pay a $3 million fine and has returned $5 million in fee overcharges to customers as part of a resolution with Hong Kong’s financial services regulator.
-
News BriefDOJ, SEC charge owner of Pennsylvania companies of running $770M Ponzi scheme
The majority owner of a Pennsylvania investment firm faces 100 years of prison time and huge fines for allegedly running a $770 million Ponzi scheme centered on an ATM company he also owned.