States Privacy News

HIPAA Events

calendar

Events Webinars Training

OCR has announced a settlement based on the impermissible disclosure of unsecured electronic PHI. The entity filed a breach report with OCR indicating that a USB drive containing ePHI was stolen from its IT department. The breach affected 2,209 individuals. OCR's investigation found the entity's failure to conduct a risk analysis and implement a risk management plan, and failed to use encryption, among other findings. | Read the Press Release