The MD Anderson Cancer Center in Houston, Texas, will have to pay $4.3 million for three data breaches, according to an article on the Campus Safety website.
It is the fourth largest fine ever awarded to the HHS Office for Civil Rights for a HIPAA violation.
A federal judge imposed the fine following an investigation into three breaches linked to unencrypted devices.
The case stems from three incidents in 2012 and 2013 when an employee’s laptop was stolen at a residence and two unencrypted thumb drives went missing, leading to the possible compromise of 35,000 health records.
Designing for Caregiver-Centered Support Spaces
Novant Health Gets Approval for Wesley Chapel Medical Center
Rocky Mountain Associated Physicians Falls Victim to Data Breach
The Disconnect Between EVS and Clinical Teams
Nemours Children's Hospital Opens Institute for Maternal Fetal Health in Delaware