Hospital Fined $387,000 for HIPAA Violation
Unlawful disclosure of protected health information (PHI) has cost a New York City hospital a $387,000 settlement with the U.S. Department of Health and Human Services (HHS).
Spencer Cox Center for Health, now the Institute for Advanced Medicine run by St. Luke’s-Roosevelt Hospital Center in New York City, was penalised following a complaint received by the HHS Office for Civil Rights (OCR) in September 2014. It was found that staff from the Spencer Cox Center, which provides care for patients with HIV/AIDS in addition to individuals suffering from other chronic diseases, faxed PHI including HIV status to a patient’s employer rather than sending it to a post office box as the patient requested.
The OCR subsequently discovered that the Spencer Cox Center had experienced a data breach nine months prior to the one in the complaint but had failed to implement safeguards or otherwise address gaps in its compliance.
“Individuals cannot trust in a healthcare system that does not appropriately safeguard their most sensitive PHI,” according to Roger Severino, director of the OCR. He went on to note that the Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires both covered entities and associates to identify vulnerabilities and take corrective action.
The St. Luke’s-Roosevelt settlement comes amid a steady stream of similar actions by the OCR, following high-profile breaches involving cybersecurity failures, among others. The settlement is in the same ballpark as that paid by a Colorado provider for HIPAA violations and significantly less than the $2.4 million paid by Memorial Hermann Health System.
"In exercising its enforcement authority, OCR takes into consideration aggravating factors such as the nature and extent of the harm caused by failure to comply with HIPAA requirements,” Severino pointed out.
Source: Fierce Healthcare
Image Credit: GOV
Published on : Mon, 29 May 2017
Print as PDF
Key FeaturesWe can provide an impressive range of clinical tools and deliver a remarkable clinical experience. On your PACS, off your PACS, within the surgical suite and beyond, iNtuition ensures your workflow is seamless and your imaging costs are minimized....
WHAT YOU SEE IS WHAT YOU GET3D Advanced Visualization is at the core of TeraRecon DNA. We are extending our capability to the 3D printing world with a dedicated image processing workflow to enhance 3D printing outcomes. Printing your model is easier...
Our iNtuition iEMV viewer can display many types of images. It can even do some pretty amazingly advanced things. As a leader in advanced visualization, you can trust that TeraRecon can deliver impressive capabilities, but we strive to make it simple,...
We can work across many PACS systems. No matter the size of your organization, iNtuition iReview can help you look across your imaging archives and create a unified interpretation view that’s made just for you. The configurable display protocols and user...