Compliance

April 5, 2026

TriMed Reports Data Breach Involving Patient Information

TriMed reported unauthorized access to parts of its network that stored order forms and invoices between September 13, 2025, and September 21, 2025, and confirmed ...

February 23, 2026

Granite Wellness Centers Pays $725,000 to Settle Data Breach Litigation

Granite Wellness Centers has agreed to a $725,000 class action settlement to resolve litigation arising from a January 2021 ransomware attack and data breach affecting ...

January 8, 2026

Asheville Arthritis and Osteoporosis Center Settles Data Breach Lawsuit for $500,000

HIPAA-covered entity Asheville Arthritis and Osteoporosis Center located in North Carolina decided to resolve a class action lawsuit that was associated with a cyberattack in ...

December 22, 2025

Breached PHI of About 93,000 Patients Because of NS Support Cyberattack

HIPAA-covered healthcare entity, NS Support LLC, based in Boise, Idaho specializes in neurosurgical procedures for issues like brain tumors. On November 21, 2025, it announced ...

December 8, 2025

Behavioral Health Resources Settles Data Breach Lawsuit for $1.1 Million

Behavioral Health Resources located in Thurston County, Olympia, Washington, decided to settle a combined class action lawsuit associated with a data breach discovered on November ...

November 14, 2025

How Healthcare Cybersecurity Training Contributes to HIPAA Safe Harbor Protection

Effective cybersecurity training plays a measurable role in whether a healthcare organization can benefit from HIPAA Safe Harbor protections by showing regulators that recognized security ...

November 12, 2025

Willis-Knighton Medical Center Resolves Tracking Technology Lawsuit

Willis-Knighton Medical Center agreed to resolve the Jacqueline Horton, et al. v. Willis-Knighton Medical Center class action lawsuit, which resulted from putting tracking codes on ...

October 31, 2025

City of Hope Pays $8,500,000 to Resolve its Class Action Data Breach Lawsuit

City of Hope, a non-profit clinical research and cancer treatment center based in Duarte, California, decided to resolve a class action lawsuit associated with a ...

October 10, 2025

Octapharma Plasma Agreed to Pay $2.55M to Settle Data Breach Lawsuit

Octapharma Plasma agreed to settle a litigation over its ransomware attack in April 2024 and data breach. Octapharma Plasma has more than 190 blood plasma ...

September 24, 2025

23andMe Increased Data Breach Settlement Fund to $50 Million

23andMe has offered to create a higher settlement fund to take care of the U.S. lawsuit associated with its 2023 data breach, putting an additional ...

September 19, 2025

Updated Version of Security Risk Assessment Tool Introduced by HHS

An upgraded version of the Security Risk Assessment (SRA) Tool has been introduced by the Assistant Secretary for Technology Policy (ASTP) and the HHS’ Office ...

September 15, 2025

CVS Health’s Potential HIPAA Violation in Using Patient Data for a Political Advocacy

CVS Health is being investigated for a potential HIPAA violation associated with the alleged usage of patient information for lobbying against the approval of a ...

August 22, 2025

Dental Group of Amarillo Pays $1,000,000 to Settle Data Breach Litigation

Dental Group of Amarillo, a community of six dental and orthodontic clinics in Dumas, Amarillo, and Canyon in Texas, decided to pay $1,000,000 to resolve ...

August 19, 2025

OCR Updated HIPAA Privacy Rule Guidance

The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) has released an updated guidance about some changes to the HIPAA ...

August 14, 2025

Aspen Dental Management’s $18.5 Million Lawsuit Settlement

Dental support organization, Aspen Dental Management, in Chicago, IL serves approximately 1,100 Aspen Dental offices throughout the U.S. It is facing a lawsuit for using ...

August 4, 2025

MedStar Health to Settle Resolve Class Action Data Breach Litigation for $1.35 Million

MedStar Health opted to resolve a class action lawsuit associated with a 2023 data breach that impacted over 183,000 individuals. A $1.35 million settlement fund ...

August 1, 2025

Eisenhower Health Pays $875,000 to Resolve Meta Pixel Data Breach Lawsuit

Eisenhower Medical Center (known as Eisenhower Health now) is a nonprofit teaching hospital in Rancho Mirage, CA. It made a decision to resolve a litigation ...

June 16, 2025

HealthEC Agrees to $5.48 Million Settlement to End Data Breach Lawsuit

HealthEC LCC and its clients finally reached a settlement to resolve a class action data breach lawsuit involving a hacking incident and data breach in ...

June 2, 2025

Laboratory Services Cooperative (LSC) Faces Lawsuits Because of Data Breach

Planned Parenthood patients are filing a lawsuit concerning the theft of their sensitive information from Laboratory Services Cooperative (LSC). Planned Parenthood centers in 30 states, ...

May 19, 2025

Use of PHI for GenAI and Cloud Accounts Violates Patient Privacy

Cybersecurity firm Netskope conducted research, which revealed that healthcare employees often expose sensitive information, including protected health information (PHI), through the use of generative AI ...

May 14, 2025

What are HIPAA Security Incidents?

HIPAA security incidents are attempts to access, use, disclose, modify, or destruct Protected Health Information, or interfere systems maintaining Protected Health Information, that are conducted ...

April 29, 2025

Lawsuit Against KU Health Linked to Unauthorized Access to Naked Patient Photos

The University of Kansas Hospital Authority and Health System (KU Health), Epic Systems Corp., and Lawrence Memorial Hospital are facing a class action lawsuit filed ...

April 10, 2025

Orlando Health Faces Website Tracking Lawsuit

Orlando Health in Florida faced a lawsuit for using tracking tools on its website that disclosed the plaintiff’s information to third parties, but it pulled ...

March 28, 2025

Data Privacy Concerns Related to 23andMe’s Filed Bankruptcy

23andMe, a direct-to-consumer genetic testing company, filed a Chapter 11 bankruptcy and requested the US Bankruptcy Court in the Eastern District of Missouri to assist ...

March 9, 2025

Amazon Faces Lawsuit for Alleged Illegal Collection of Medical & Location Information

Amazon is facing a lawsuit for its software development kit (SDK), which allegedly unlawfully obtained consumers’ medical and location information violating government rules and consumer ...

March 4, 2025

Republicans Create a Working Group to Establish Federal Data Privacy Legislation

House Republicans have created a working group to write privacy laws that will establish federal privacy standards to change the present patchwork of state regulations. ...

February 1, 2025

Iowa Doctor Imprisoned for HIPAA Violation

Iowa doctor Dr. Gabriel Alejandro Hernandez-Roman is now imprisoned because of HIPAA violation. Allegedly, the doctor viewed the health records of present and past romantic ...

January 28, 2025

Enzo Biochem Pays $7.5M to Resolve Ransomware Data Breach Class Action

The life sciences and diagnostics firm Enzo Biochem based in Farmingdale, NY has consented to pay $7.5 million to resolve a combined class action lawsuit ...

December 20, 2024

The New HIPAA NCPDP Retail Pharmacy & Medicaid Pharmacy Subrogation Standard

The U.S. Department of Health and Human Services has issued a final rule with changes to the Health Insurance Portability and Accountability Act (HIPAA) National ...

December 16, 2024

Colorado Children’s Hospital to Pay OCR $548,265 Penalty to Settle HIPAA Violations

The HHS’ Office for Civil Rights (OCR) has reported its 7th civil monetary penalty for HIPAA violation by a covered entity this 2024. This case ...

12 3…25 Next

.st1{display:none}Compliance

Compliance