The MD Anderson Cancer Center in Houston, Texas, will have to pay $4.3 million for three data breaches, according to an article on the Campus Safety website.
It is the fourth largest fine ever awarded to the HHS Office for Civil Rights for a HIPAA violation.
A federal judge imposed the fine following an investigation into three breaches linked to unencrypted devices.
The case stems from three incidents in 2012 and 2013 when an employee’s laptop was stolen at a residence and two unencrypted thumb drives went missing, leading to the possible compromise of 35,000 health records.
Turning Facility Data Into ROI: Where Healthcare Leaders Should Start
Sutter Health Breaks Ground on Advanced Cancer Center and Care Complex
Imperial Beach Community Clinic Caught Up in Email Cyberattack
Social Media Driving Rise in Trade Jobs
North Carolina Children's Receives $25M Gift from Coca-Cola Consolidated