Skip to main content
Skip to navigation

Regulatory Enforcement

Medical center to pay $80K for Covid-19 patient info shared with media

By Kyle Brasseur2023-11-21T17:43:00

An academic medical center in New York agreed to pay $80,000 as part of a settlement with the Department of Health and Human Services’ Office for Civil Rights (OCR) for potential violations of the Health Insurance Portability and Accountability Act (HIPAA).

Saint Joseph’s Medical Center impermissibly disclosed the protected health information of Covid-19 patients to the Associated Press (AP) for an article on its response to the public health emergency, the OCR said in a press release Monday.

In April 2020, Saint Joseph’s allowed an AP reporter to observe three patients being treated for Covid-19. The media outlet’s article included photographs and information about the facility’s patients that was presented without their consent.

THIS IS MEMBERS-ONLY CONTENT

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

News Brief
Lafourche Medical Group to pay $480K in landmark HHS phishing action

2023-12-08T16:48:00Z By Kyle Brasseur

Louisiana-based Lafourche Medical Group agreed to pay $480,000 as part of the first phishing attack-related settlement the Department of Health and Human Services’ Office for Civil Rights has reached under the Health Insurance Portability and Accountability Act.
News Brief
HHS publishes updated healthcare compliance guidance

2023-11-13T20:15:00Z By Adrianne Appel

New guidance from the Department of Health and Human Services is designed to apply generally to the healthcare industry, from doctors to pharmaceutical manufacturers, and help all such entities self-monitor their compliance and prevent waste, fraud, and abuse.
News Brief
Medical management company to pay $100K in landmark HHS ransomware case

2023-11-01T22:10:00Z By Kyle Brasseur

Doctors’ Management Service agreed to pay $100,000 in settling the first ransomware agreement under the Health Insurance Portability and Accountability Act reached by the Department of Health and Human Services’ Office for Civil Rights.

More from Regulatory Enforcement

Article
Georgia Tech to pay $875,000 for allegations brought by compliance officers

2025-10-07T16:08:00Z By Adrianne Appel

Georgia Tech Research Corp. (GTRC) has agreed to pay $875,000 to settle allegations first raised by two compliance officers that its cybersecurity protocols violated acceptable standards for defense contractors, the Department of Justice (DOJ) said.
Article
Tractor Supply Company hit with $1.35M fine for alleged California privacy violations

2025-10-06T17:12:00Z By Adrianne Appel

Tractor Supply Company has agreed to get into compliance with California’s consumer privacy law and to pay a $1.35 million fine—the largest yet by California—to settle allegations it violated the privacy rights of customers and job applicants.
Basic Page
LuminUltra fined $685K by BIS for illegal shipment to Iran

2025-10-06T16:46:00Z By Aly McDevitt

A single $33,000 shipment to Iran triggered a six-figure penalty and years of compliance oversight for biotechnology company LuminUltra Technologies, Inc.