The MD Anderson Cancer Center in Houston, Texas, will have to pay $4.3 million for three data breaches, according to an article on the Campus Safety website.
It is the fourth largest fine ever awarded to the HHS Office for Civil Rights for a HIPAA violation.
A federal judge imposed the fine following an investigation into three breaches linked to unencrypted devices.
The case stems from three incidents in 2012 and 2013 when an employee’s laptop was stolen at a residence and two unencrypted thumb drives went missing, leading to the possible compromise of 35,000 health records.
Healthcare Construction Infection Control: Essential CDC Guidelines for Active Facilities
Protecting the Most Vulnerable: Inside the NICU
Kora Behavioral Health Officially Opens in Lancaster, Pennsylvania
Small Details, Real Impact: Design With Caregivers in Mind
Safety Features Senior Living Communities Prioritize