The MD Anderson Cancer Center in Houston, Texas, will have to pay $4.3 million for three data breaches, according to an article on the Campus Safety website.
It is the fourth largest fine ever awarded to the HHS Office for Civil Rights for a HIPAA violation.
A federal judge imposed the fine following an investigation into three breaches linked to unencrypted devices.
The case stems from three incidents in 2012 and 2013 when an employee’s laptop was stolen at a residence and two unencrypted thumb drives went missing, leading to the possible compromise of 35,000 health records.
Wanted: Scientific Standard for Hospital Cleaning
NLCS Strengthens Safety and Compliance with Comprehensive Electrical Program
Sun Valley Surgery Center Suffers a Data Breach
EV Charging Stations: Planning for Safety, Convenience, Expansion
Why Ambulatory Surgery Centers Are Turning to Dedicated HVAC Systems