UCLAHS Settles Potential HIPAA Violations for $865,500
The Department of Health and Human Services (HHS) entered into its third largest settlement for potential HIPAA privacy and security rule violations this week, reaching a resolution agreement Tuesday of $865,500 with the University of California at Los Angeles Health System (UCLAHS).
UCLAHS has also committed to a corrective action plan in order to fix "gaps in its compliance" with HIPAA's privacy and security rules, , according to a report on the HHS website published Wednesday.
The Office for Civil Rights (OCR), which enforces HIPAA under HHS, investigated the health system following two separate complaints filed by two celebrity patients. OCR said UCLAHS employees repeatedly and without permissible reason looked at their electronic personal health information in addition to other UCLAHS patients.
This week's settlement ranks behind CVS Caremark Co. ($2.25 million, February, 2009) and Rite Aid ($1 million, July 2010) for the amount of money reached in an agreement with OCR for potential HIPAA privacy and security rule violations.
This February, OCR fined Cignet Health $4.3 million civil money penalty, the largest fine for such violations. It was not a settlement.
- FDA hopes hospitals will switch to newly regulated pharmacies
- CMS Sets 2014 Pay Rates for Hospital Outpatient and Physician Services
- New G-Codes to Pay Doctors for Broad Array of Non-Face-to-Face Care
- States Rejecting Medicaid Expansion Forgo Billions in Federal Funds
- Why You Should Involve Patients in Nursing Handoffs
- Not-for-Profit Hospitals Find Opportunity Amid Uncertainty
- Substance Abuse Resurfaces Among Anesthesiologists in Training
- Douglas Hawthorne—A Chance to Do Something Big
- Safety Net Executives Renew Call to Preserve DSH Payments
- The Most Polarizing Topics in Healthcare IT