OCR Settles HIPAA Investigation with Business Associate

Due to a July 2018 incident, the Office for Civil Rights (OCR) investigated MedEvolve to determine if the business associate was HIPAA compliant. The result? A $350,000 HIPAA fine for potentially violating several provisions of the HIPAA Privacy and Security Rules. *Correction: An earlier version of this article incorrectly stated that the MedEvolve incident was the result of hacking. The breach was [...]

2023-07-24T15:36:20-04:00May 16th, 2023|

Oklahoma State University Agrees to $875k HIPAA Breach Fine

A 2016 hacking incident that hit Oklahoma State University's Center for Health Sciences has led to an $875,000 HIPAA breach fine settlement to address potential violations. Background of Oklahoma State University HIPAA Breach Hackers first gained access to a web server containing the electronic protected health information (ePHI) of as many as 279,865 individuals on March 9, 2016. The information accessed [...]

2023-07-26T14:18:46-04:00July 15th, 2022|