OCR Settles HIPAA Investigation with Business Associate

Due to a July 2018 incident, the Office for Civil Rights (OCR) investigated MedEvolve to determine if the business associate was HIPAA compliant. The result? A $350,000 HIPAA fine for potentially violating several provisions of the HIPAA Privacy and Security Rules. *Correction: An earlier version of this article incorrectly stated that the MedEvolve incident was the result of hacking. The breach was [...]