MGH to Pay $1M to Settle 'Potential' HIPAA Violation
The documents were lost when a Mass General employee, while commuting to work, left the documents on the subway. The records have not been recovered.
That investigation "indicated that Mass General failed to implement reasonable, appropriate safeguards to protect the privacy of protected health information when removed from Mass General's premises and impermissibly disclosed protected health information potentially violating provisions of the HIPAA Privacy Rule," the HHS statement said.
The correction plan also directs the hospital's Director of Internal Audit Services of Partners HealthCare System Inc. to serve as an internal monitor that will conduct assessments of Mass General's compliance with the corrective action plan and render semi-annual reports to HHS for a 3-year period."
Cheryl Clark is senior quality editor and California correspondent for HealthLeaders Media. She is a member of the Association of Health Care Journalists.
- Two-Midnight Rule Must be Fixed or Replaced, Say Providers
- Don't Underestimate Emotional Intelligence
- The Secret to Physician Engagement? It's Not Better Pay
- CDC Warns of Antibiotic Overuse in Hospitals
- Care Coordination Tough to Define, Measure
- SCOTUS Review of NC Board Case 'A Very Big Deal' to Providers
- Yale New Haven Health Partners with Tenet Healthcare in CT
- Physicians Take SGR Repeal Message to Washington
- Size Matters in Antibiotic Overuse
- Evidence-Based Practice and Nursing Research: Avoiding Confusion