Untimely Breach Notification Leads to $475,000 HIPAA Settlement | Practical Law
The Department of Health and Human Services (HHS) has announced a settlement with an Illinois-based health care provider system for potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) resulting from the health care system's failure to provide timely breach notification. The health care system will pay $475,000 to settle the potential HIPAA violations and must comply with numerous requirements under a corrective action plan (CAP).