Banner Health to pay $1.25M over HIPAA Security Rule lapses
By 
Jeff Dale2023-02-08T18:58:00
A Phoenix-based nonprofit health system agreed to pay $1.25 million as part of a settlement with the Department of Health and Human Services (HHS) addressing violations of the Health Insurance Portability and Accountability Act Security Rule regarding a 2016 data breach.
The breach at Banner Health compromised the protected health information of 2.81 million consumers, the HHS stated in a Feb. 2 press release. The hacker accessed data that included patient names, physician names, dates of birth, addresses, Social Security numbers, clinical details, dates of service, claims information, lab results, medications, diagnoses and conditions, and health insurance information.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefHHS orders L.A. Care to pay $1.3M over apparent HIPAA violations
L.A. Care Health Plan agreed to pay $1.3 million to settle allegations by the U.S. Department of Health and Human Services it potentially violated the Health Information Portability and Accountability Act.
-
News BriefHHS creates new enforcement office for health privacy
The Department of Health and Human Services and its office responsible for enforcing health privacy reorganized so it can sharpen enforcement of cybersecurity and data breaches.
-
PremiumHHS proposal aims to ‘shine a light’ on nursing home ownership
It is still too early in the rulemaking process to know what will be included in the Biden administration’s final rule on transparency of nursing home ownership, but there are some steps facilities can take to prepare, according to experts.
More from Regulatory Enforcement
-
ArticleCMA holds companies responsible for false claims, fake reviews ‘throughout supply chain’
Companies face large fines if they spread false marketing claims or fake reviews about their products and services—as well as those by suppliers—under a toughened competition regime in the U.K. aimed at enhancing consumer protection.
-
ArticleFTC warns VISA and other processors that company policies may lead to debanking
Visa, Mastercard, PayPal, and Stripe have received letters from the Federal Trade Commission, warning the companies to end any policies or terms of service that may result in the “debanking” of customers.
-
ArticleDOJ makes good on corporate-friendly enforcement policy with Balt resolution
The ink was barely dry on the U.S. Department of Justice’s new corporate enforcement policy (CEP) when the agency announced it would not prosecute Balt SAS for alleged bribery violations.