{"id":1968,"date":"2012-07-05T00:00:00","date_gmt":"2012-07-05T00:00:00","guid":{"rendered":"http:\/\/otava.test\/2012-hipaa-violations-and-audits\/"},"modified":"2012-07-05T00:00:00","modified_gmt":"2012-07-05T00:00:00","slug":"2012-hipaa-violations-and-audits","status":"publish","type":"post","link":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/","title":{"rendered":"2012 HIPAA Violations and Audits"},"content":{"rendered":"<p>In August, I wrote a blog post on <a href=\"https:\/\/otavawebsite.wpengine.com\/blog\/2011-hipaa-violations-and-audits\/\">2011 HIPAA Violations and Audits<\/a> and created an infographic representing the type of breach by percentages.\u00a0Now over a year later, it\u2019s time for an update on the distribution of breach types.<\/p>\n<p>April Sage, Online Tech Director of Healthcare Vertical and Marketing compiled the following statistics from HHS\u2019s infamous Wall of Shame (website posting of all unencrypted breaches affecting over 500 individuals):<\/p>\n<ul>\n<li>39.1% Theft<\/li>\n<li>36.3% Loss<\/li>\n<li>9.4% Unknown<\/li>\n<li>8.6% Hacking\/IT Incident<\/li>\n<li>5.8% Unauthorized Access<\/li>\n<li>0.8% Improper Disposal<\/li>\n<\/ul>\n<div>\n<figure id=\"attachment_7357\" aria-describedby=\"caption-attachment-7357\" style=\"width: 612px\" class=\"wp-caption alignleft\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-7357\" title=\"2012 HIPAA Violations Update\" src=\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\" alt=\"2012 HIPAA Violations Update\" width=\"612\" height=\"792\" \/><figcaption id=\"caption-attachment-7357\" class=\"wp-caption-text\">2012 HIPAA Violations Update<\/figcaption><\/figure>\n<p><span style=\"font-size: small;\"><span style=\"line-height: 24px;\">\u00a0<\/span><\/span><\/p>\n<\/div>\n<p>While the greatest type of breach involved theft, what type of media was involved in the breach? Somewhat surprising is the prevalence of backup tapes, ranking the highest at 32.6%.<\/p>\n<p>Next up was EMRs (electronic medical record systems) at 13.9%, and close behind in third came network servers at 13.1%. Other types of media involved included:<\/p>\n<ul>\n<li>12.7% Computer<\/li>\n<li>10.4% Laptop<\/li>\n<li>8.4% Electronic Device<\/li>\n<li>5.3% Desktop Computer<\/li>\n<li>3.5% Paper<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft\" title=\"HIPAA Compliant Data Centers White Paper\" src=\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/hipaa-white-paper.gif\" alt=\"HIPAA Compliant Data Centers White Paper\" width=\"186\" height=\"136\" \/><\/p>\n<p>The loss or theft of backup tapes can be easily avoided by employing an <a href=\"https:\/\/otavawebsite.wpengine.com\/solutions\/data-protection\/cloud-backup\/\">offsite backup<\/a> solution that doesn\u2019t involve tapes, or is encrypted.<\/p>\n<p>Encryption is just one recommended best practice &#8211; get the complete list of <a href=\"https:\/\/otavawebsite.wpengine.com\/compliance-security\/hipaa-compliant-cloud\/\">HIPAA hosting requirement<\/a>s to meet HIPAA compliance, as well as what to look for in a <a href=\"https:\/\/otavawebsite.wpengine.com\/operations\/locations\/michigan-cloud-and-data-centers\/\/compliance\/hipaa-compliant-data-centers\">HIPAA compliant data center<\/a> by reading our <a href=\"https:\/\/www.onlinetech.com\/resources\/white-papers\/hipaa-compliant-data-centers\">white paper<\/a>.<\/p>\n<p>Or sign up for our upcoming webinar to find out how to balance security, compliance and healthcare mobility with <a href=\"https:\/\/otavawebsite.wpengine.com\/solutions\/cloud\/\">cloud computing<\/a>: <em><strong><a href=\"https:\/\/otavawebsite.wpengine.com\/about\/events\/\">Overcoming Cloud-Based Mobility Challenges in Healthcare<\/a><\/strong><\/em><\/p>\n<p><strong>Recommended Reading:<\/strong><br \/>\n<a href=\"https:\/\/www.onlinetech.com\/secure-hosting\/hipaa-compliant-hosting\/resources\/what-is-a-hipaa-violation\">What is a HIPAA Violation?<\/a><br \/>\n<a href=\"https:\/\/otavawebsite.wpengine.com\/blog\/free-webinar-sharing-phi-data-legal-implications-of-baas-avoiding-hipaa-pitfalls\/\"> Sharing PHI Data? Legal Implications of BAAs &amp; Avoiding HIPAA Pitfalls<\/a><br \/>\n<a href=\"https:\/\/otavawebsite.wpengine.com\/blog\/ocr-audit-requirements-following-a-self-reported-hipaa-breach\/\"> OCR Audit Requirements Following a Self-Reported HIPAA Breach<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In August, I wrote a blog post on 2011 HIPAA Violations and Audits and created an infographic representing the type of breach by percentages.\u00a0Now over a year later, it\u2019s time for an update on the distribution of breach types. April Sage, Online Tech Director of Healthcare Vertical and Marketing compiled the following statistics from HHS\u2019s infamous Wall of Shame (website posting of all unencrypted breaches affecting over 500 individuals): 39.1% Theft 36.3% Loss 9.4% Unknown 8.6% Hacking\/IT Incident 5.8% Unauthorized Access 0.8% Improper Disposal \u00a0 While the greatest type of breach involved theft, what type of media was involved in the breach? Somewhat surprising is the prevalence of backup tapes, ranking the highest at 32.6%. Next up was EMRs (electronic medical record systems) at 13.9%, and close behind in third came network servers at 13.1%. Other types of media involved included: 12.7% Computer 10.4% Laptop 8.4% Electronic Device 5.3% Desktop Computer 3.5% Paper The loss or theft of backup tapes can be easily avoided by employing an offsite backup solution that doesn\u2019t involve tapes, or is encrypted. Encryption is just one recommended best practice &#8211; get the complete list of HIPAA hosting requirements to meet HIPAA compliance, as well as&#8230;<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"other_category":[],"class_list":["post-1968","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.2) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>2012 HIPAA Violations and Audits | OTAVA<\/title>\n<meta name=\"description\" content=\"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"2012 HIPAA Violations and Audits\" \/>\n<meta property=\"og:description\" content=\"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\" \/>\n<meta property=\"og:site_name\" content=\"OTAVA\" \/>\n<meta property=\"article:published_time\" content=\"2012-07-05T00:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\" \/>\n<meta name=\"author\" content=\"Irma Brillantes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Irma Brillantes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\"},\"author\":{\"name\":\"Irma Brillantes\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\"},\"headline\":\"2012 HIPAA Violations and Audits\",\"datePublished\":\"2012-07-05T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\"},\"wordCount\":270,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\",\"url\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\",\"name\":\"2012 HIPAA Violations and Audits | OTAVA\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\",\"datePublished\":\"2012-07-05T00:00:00+00:00\",\"description\":\"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.otava.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"2012 HIPAA Violations and Audits\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.otava.com\/#website\",\"url\":\"https:\/\/www.otava.com\/\",\"name\":\"OTAVA\u00ae\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.otava.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.otava.com\/#organization\",\"name\":\"OTAVA\u00ae\",\"url\":\"https:\/\/www.otava.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"caption\":\"OTAVA\u00ae\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\",\"name\":\"Irma Brillantes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"caption\":\"Irma Brillantes\"},\"url\":\"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"2012 HIPAA Violations and Audits | OTAVA","description":"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/","og_locale":"en_US","og_type":"article","og_title":"2012 HIPAA Violations and Audits","og_description":"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.","og_url":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/","og_site_name":"OTAVA","article_published_time":"2012-07-05T00:00:00+00:00","og_image":[{"url":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg","type":"","width":"","height":""}],"author":"Irma Brillantes","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Irma Brillantes","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#article","isPartOf":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/"},"author":{"name":"Irma Brillantes","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263"},"headline":"2012 HIPAA Violations and Audits","datePublished":"2012-07-05T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/"},"wordCount":270,"commentCount":0,"publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"image":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage"},"thumbnailUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/","url":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/","name":"2012 HIPAA Violations and Audits | OTAVA","isPartOf":{"@id":"https:\/\/www.otava.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage"},"image":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage"},"thumbnailUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg","datePublished":"2012-07-05T00:00:00+00:00","description":"Statistics from HHS\u2019s infamous Wall of Shame, website that posts unencrypted breaches affecting over 500 individuals.","breadcrumb":{"@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#primaryimage","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/2012-hipaa-violations-update.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.otava.com\/blog\/2012-hipaa-violations-and-audits\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.otava.com\/"},{"@type":"ListItem","position":2,"name":"2012 HIPAA Violations and Audits"}]},{"@type":"WebSite","@id":"https:\/\/www.otava.com\/#website","url":"https:\/\/www.otava.com\/","name":"OTAVA\u00ae","description":"","publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.otava.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.otava.com\/#organization","name":"OTAVA\u00ae","url":"https:\/\/www.otava.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","caption":"OTAVA\u00ae"},"image":{"@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263","name":"Irma Brillantes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","caption":"Irma Brillantes"},"url":"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/"}]}},"_links":{"self":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1968","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/comments?post=1968"}],"version-history":[{"count":0,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1968\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/media?parent=1968"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/categories?post=1968"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/tags?post=1968"},{"taxonomy":"other_category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/other_category?post=1968"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}