Accessing the healthcare data of patients without authorization is prohibited under HIPAA legislation, and the disclosure of this information to a third party is a criminal matter. The offense carries a jail term of up to 10 years in addition to a maximum fine of $500,000 if the disclosure is made for personal gain. One of the latest examples of wrongful disclosure of individually identifiable health information comes from the Eastern District of Texas where former Longview resident, Joshua Hippler, 30 has been convicted this offence and sentenced to serve 18 months in jail.
