Idaho State University To Pay $400K For Medical Records Breach
Idaho State University is paying a $400,000 to the federal government to settle allegations it improperly exposed confidential medical records.
In August 2011, ISU told the U.S. Department of Health and Human Services of a breach of its unsecured electronic protected health information.
An investigation by the federal agency determined the Pocatello school hadn’t adequately assessed potential risks to medical information shielded from release by the law known as the Health Insurance Portability and Accountability Act, or HIPAA.
As part of the agreement this month, Idaho State won’t contest the amount of the payment.
The school has also agreed to take protective measures, to ensure something similar doesn’t re-occur.
Greg Ehardt, ISU’s new HIPAA officer, says the school has determined none of the 17,500 records that were vulnerable were compromised.
- Court Ruling Could Help Shed Light on Owners of Litigation Funders, Medical Clinics
- CEO Sentenced in Miami to 15 Years in One of the Largest Health Care Fraud Cases
- Aon Adds to List of Brokers Suing Howden US for Alleged Poaching, Theft
- UPS Ripped Off Seasonal Workers With Unfair Pay Practices, Lawsuit Alleges