The MD Anderson Cancer Center in Houston, Texas, will have to pay $4.3 million for three data breaches, according to an article on the Campus Safety website.
It is the fourth largest fine ever awarded to the HHS Office for Civil Rights for a HIPAA violation.
A federal judge imposed the fine following an investigation into three breaches linked to unencrypted devices.
The case stems from three incidents in 2012 and 2013 when an employee’s laptop was stolen at a residence and two unencrypted thumb drives went missing, leading to the possible compromise of 35,000 health records.
Severe Winter Weather: What Healthcare Facilities Must Prioritize
Recovery Centers of America Opens New Facility in Florida
Munson Healthcare Caught Up in Third-Party Data Breach
From Downtime to Data: Rethinking Restroom Reliability in Healthcare
LeChase Building Four-Story Addition to UHS Delaware Valley Hospital