Consistent HIPAA Compliance Requires Ongoing Assessments
The need for HIPAA compliance will never wane. As more Wi-Fi-connected medical devices and apps enter the market and patient data becomes universally digitized, the need for data privacy measures will continue to expand. Since medical organizations are ultimately accountable for that privacy, MSPs should help their clients understand that the repercussions for violating the health privacy mandates of HIPAA will grow as well.
Yet, organizations continue to skirt HIPAA requirements at the risk of hefty fines and patient privacy breaches. Over 245,000 complaints have been filed since the Security Rule of HIPAA was established in 2003. As of September 2020, 3,823 remain open.1
Let’s take a look at some recent examples of HIPAA complaints and their high-priced settlements.
HIPAA Complaints and Settlements
Risk Analysis Failure
The Office for Civil Rights (OCR) hit Fresenius Medical Care North America (FMCNA) with a $3.5 million settlement when the health organization failed to perform HIPPA risk assessments of its ePHI systems in five dialysis centers.2
Get unlimited access to:
Enter your credentials below to log in. Not yet a member of MSPinsights? Subscribe today.