{"id":1524,"date":"2011-03-07T00:00:00","date_gmt":"2011-03-07T00:00:00","guid":{"rendered":"http:\/\/otava.test\/hipaa-violations\/"},"modified":"2011-03-07T00:00:00","modified_gmt":"2011-03-07T00:00:00","slug":"hipaa-violations","status":"publish","type":"post","link":"https:\/\/www.otava.com\/blog\/hipaa-violations\/","title":{"rendered":"Health & Human Services Getting Serious on HIPAA Violations"},"content":{"rendered":"

Cignet Health and Massachusetts General Hospital found out the HHS is getting serious about HIPAA violations. HHS imposed a $4.3 million penalty on Cignet Health<\/a> for HIPAA violations and Mass General<\/a> agreed to pay the Feds $1 million to settle potential HIPAA violations.<\/p>\n

Mass General\u2019s case involved the loss of protected health information (PHI) of 192 patients of Mass General\u2019s Infectious Disease Associates outpatient practice.\u00a0 That works out to over $5000 per record lost.\u00a0 Cignet\u2019s was found to violate 41 patients\u2019 rights by denying them access to their medical records.<\/p>\n

In 2010, Rite Aid agreed to pay $1 million to settle a HIPAA privacy case after failing to safeguard consumer information.<\/p>\n

HIPAA has been in place for a long time now, but its enforcement and the financial impact of violations have been hard to pinpoint until recently.\u00a0 With these cases, it\u2019s become apparent that violations can be expensive.<\/p>\n

IT shares the responsibility for HIPAA protection of all medical electronic records and patient information.\u00a0 With the recent HIPAA enforcement actions, it\u2019s becoming increasingly important that health care IT runs in a secure, audited data center.<\/p>\n

IT can assure HIPAA compliant hosting<\/a> by running its servers and data storage in HIPAA compliant data centers<\/a> that address the physical, data and network security.\u00a0 Ask to review the data center\u2019s SAS 70 or SSAE 16 audit report<\/a>\u00a0and a copy of their HIPAA audit report.\u00a0 The audit reports should specifically cover the processes for the data center\u2019s physical security, network security and control of access to the data on the server.<\/p>\n","protected":false},"excerpt":{"rendered":"

Cignet Health and Massachusetts General Hospital found out the HHS is getting serious about HIPAA violations. HHS imposed a $4.3 million penalty on Cignet Health for HIPAA violations and Mass General agreed to pay the Feds $1 million to settle potential HIPAA violations. Mass General\u2019s case involved the loss of protected health information (PHI) of 192 patients of Mass General\u2019s Infectious Disease Associates outpatient practice.\u00a0 That works out to over $5000 per record lost.\u00a0 Cignet\u2019s was found to violate 41 patients\u2019 rights by denying them access to their medical records. In 2010, Rite Aid agreed to pay $1 million to settle a HIPAA privacy case after failing to safeguard consumer information. HIPAA has been in place for a long time now, but its enforcement and the financial impact of violations have been hard to pinpoint until recently.\u00a0 With these cases, it\u2019s become apparent that violations can be expensive. IT shares the responsibility for HIPAA protection of all medical electronic records and patient information.\u00a0 With the recent HIPAA enforcement actions, it\u2019s becoming increasingly important that health care IT runs in a secure, audited data center. IT can assure HIPAA compliant hosting by running its servers and data storage in HIPAA compliant…<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"other_category":[],"class_list":["post-1524","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"\nHealth & Human Services Getting Serious on HIPAA Violations | OTAVA<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Health & Human Services Getting Serious on HIPAA Violations\" \/>\n<meta property=\"og:description\" content=\"Cignet Health and Massachusetts General Hospital found out the HHS is getting serious about HIPAA violations. HHS imposed a $4.3 million penalty on Cignet Health for HIPAA violations and Mass General agreed to pay the Feds $1 million to settle potential HIPAA violations. Mass General\u2019s case involved the loss of protected health information (PHI) of 192 patients of Mass General\u2019s Infectious Disease Associates outpatient practice.\u00a0 That works out to over $5000 per record lost.\u00a0 Cignet\u2019s was found to violate 41 patients\u2019 rights by denying them access to their medical records. In 2010, Rite Aid agreed to pay $1 million to settle a HIPAA privacy case after failing to safeguard consumer information. HIPAA has been in place for a long time now, but its enforcement and the financial impact of violations have been hard to pinpoint until recently.\u00a0 With these cases, it\u2019s become apparent that violations can be expensive. IT shares the responsibility for HIPAA protection of all medical electronic records and patient information.\u00a0 With the recent HIPAA enforcement actions, it\u2019s becoming increasingly important that health care IT runs in a secure, audited data center. IT can assure HIPAA compliant hosting by running its servers and data storage in HIPAA compliant...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\" \/>\n<meta property=\"og:site_name\" content=\"OTAVA\" \/>\n<meta property=\"article:published_time\" content=\"2011-03-07T00:00:00+00:00\" \/>\n<meta name=\"author\" content=\"Irma Brillantes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Irma Brillantes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\"},\"author\":{\"name\":\"Irma Brillantes\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\"},\"headline\":\"Health & Human Services Getting Serious on HIPAA Violations\",\"datePublished\":\"2011-03-07T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\"},\"wordCount\":263,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.otava.com\/blog\/hipaa-violations\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\",\"url\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\",\"name\":\"Health & Human Services Getting Serious on HIPAA Violations | OTAVA\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/#website\"},\"datePublished\":\"2011-03-07T00:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.otava.com\/blog\/hipaa-violations\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.otava.com\/blog\/hipaa-violations\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.otava.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Health & Human Services Getting Serious on HIPAA Violations\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.otava.com\/#website\",\"url\":\"https:\/\/www.otava.com\/\",\"name\":\"OTAVA\u00ae\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.otava.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.otava.com\/#organization\",\"name\":\"OTAVA\u00ae\",\"url\":\"https:\/\/www.otava.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"caption\":\"OTAVA\u00ae\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\",\"name\":\"Irma Brillantes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"caption\":\"Irma Brillantes\"},\"url\":\"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Health & Human Services Getting Serious on HIPAA Violations | OTAVA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.otava.com\/blog\/hipaa-violations\/","og_locale":"en_US","og_type":"article","og_title":"Health & Human Services Getting Serious on HIPAA Violations","og_description":"Cignet Health and Massachusetts General Hospital found out the HHS is getting serious about HIPAA violations. HHS imposed a $4.3 million penalty on Cignet Health for HIPAA violations and Mass General agreed to pay the Feds $1 million to settle potential HIPAA violations. Mass General\u2019s case involved the loss of protected health information (PHI) of 192 patients of Mass General\u2019s Infectious Disease Associates outpatient practice.\u00a0 That works out to over $5000 per record lost.\u00a0 Cignet\u2019s was found to violate 41 patients\u2019 rights by denying them access to their medical records. In 2010, Rite Aid agreed to pay $1 million to settle a HIPAA privacy case after failing to safeguard consumer information. HIPAA has been in place for a long time now, but its enforcement and the financial impact of violations have been hard to pinpoint until recently.\u00a0 With these cases, it\u2019s become apparent that violations can be expensive. IT shares the responsibility for HIPAA protection of all medical electronic records and patient information.\u00a0 With the recent HIPAA enforcement actions, it\u2019s becoming increasingly important that health care IT runs in a secure, audited data center. IT can assure HIPAA compliant hosting by running its servers and data storage in HIPAA compliant...","og_url":"https:\/\/www.otava.com\/blog\/hipaa-violations\/","og_site_name":"OTAVA","article_published_time":"2011-03-07T00:00:00+00:00","author":"Irma Brillantes","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Irma Brillantes","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/#article","isPartOf":{"@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/"},"author":{"name":"Irma Brillantes","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263"},"headline":"Health & Human Services Getting Serious on HIPAA Violations","datePublished":"2011-03-07T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/"},"wordCount":263,"commentCount":0,"publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.otava.com\/blog\/hipaa-violations\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/","url":"https:\/\/www.otava.com\/blog\/hipaa-violations\/","name":"Health & Human Services Getting Serious on HIPAA Violations | OTAVA","isPartOf":{"@id":"https:\/\/www.otava.com\/#website"},"datePublished":"2011-03-07T00:00:00+00:00","breadcrumb":{"@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.otava.com\/blog\/hipaa-violations\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.otava.com\/blog\/hipaa-violations\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.otava.com\/"},{"@type":"ListItem","position":2,"name":"Health & Human Services Getting Serious on HIPAA Violations"}]},{"@type":"WebSite","@id":"https:\/\/www.otava.com\/#website","url":"https:\/\/www.otava.com\/","name":"OTAVA\u00ae","description":"","publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.otava.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.otava.com\/#organization","name":"OTAVA\u00ae","url":"https:\/\/www.otava.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","caption":"OTAVA\u00ae"},"image":{"@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263","name":"Irma Brillantes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","caption":"Irma Brillantes"},"url":"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/"}]}},"_links":{"self":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1524","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/comments?post=1524"}],"version-history":[{"count":0,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1524\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/media?parent=1524"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/categories?post=1524"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/tags?post=1524"},{"taxonomy":"other_category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/other_category?post=1524"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}