Banner Health to pay $1.25M over HIPAA Security Rule lapses
By 
Jeff Dale2023-02-08T18:58:00
A Phoenix-based nonprofit health system agreed to pay $1.25 million as part of a settlement with the Department of Health and Human Services (HHS) addressing violations of the Health Insurance Portability and Accountability Act Security Rule regarding a 2016 data breach.
The breach at Banner Health compromised the protected health information of 2.81 million consumers, the HHS stated in a Feb. 2 press release. The hacker accessed data that included patient names, physician names, dates of birth, addresses, Social Security numbers, clinical details, dates of service, claims information, lab results, medications, diagnoses and conditions, and health insurance information.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefHHS orders L.A. Care to pay $1.3M over apparent HIPAA violations
L.A. Care Health Plan agreed to pay $1.3 million to settle allegations by the U.S. Department of Health and Human Services it potentially violated the Health Information Portability and Accountability Act.
-
News BriefHHS creates new enforcement office for health privacy
The Department of Health and Human Services and its office responsible for enforcing health privacy reorganized so it can sharpen enforcement of cybersecurity and data breaches.
-
PremiumHHS proposal aims to ‘shine a light’ on nursing home ownership
It is still too early in the rulemaking process to know what will be included in the Biden administration’s final rule on transparency of nursing home ownership, but there are some steps facilities can take to prepare, according to experts.
More from Regulatory Enforcement
-
News BriefSEC’s Uyeda: ‘Enforcement is the wrong way’ to handle off-channel communications
The U.S. Securities and Exchange Commission’s Mark Uyeda told an audience of investment advisers that the SEC will no longer prioritize stand-alone enforcement actions for violations of the SEC’s rules on off-channel communications.
-
News BriefAdobe agrees to $150M settlement over alleged cancellation fee violations
Adobe agreed to a $150 million settlement with the U.S. Department of Justice over accusations that it concealed software termination fees and made it difficult for customers to cancel.
-
ArticleU.K. competition regulator ‘very likely’ to use new enforcement powers despite government’s pro-growth agenda
New powers granted to the U.K.’s main competition watchdog will result in greater scrutiny, tougher enforcement, and a stark warning for companies to review their sales and marketing promotions—especially since some practices have been pushed firmly into the spotlight thanks to legislation that came into effect last year.