
image credit: pixabay
Federal regulators fined a New York City medical center $4.75 million and called for a correction action plan to settle potential HIPAA violations discovered during the investigation of a hospital insider who sold patient data to an identity theft ring in 2013.
The U.S. Department of Health and Human Services’ Office for Civil Rights on Tuesday said the settlement with Montefiore Medical Center in the Bronx stems from “data security failures” at the organization that led to an employee stealing and selling patients’ protected health information from January to June 2013.