Business Associate Diagnostics HIPAA 
The HIPAA Journal
JULY 20, 2025
In June, HIPAA-regulated entities notified the HHS’ Office for Civil Rights (OCR) about 70 data breaches impacting 500 or more individuals, which is well above the 12-month average of 59 large data breaches per month. The third largest breach of the month was reported by another business associate, Compumedics USA, Inc.,
Arkenea
JUNE 23, 2025
But what exactly is RAG in healthcare, and more importantly, how can your organization implement it successfully while maintaining HIPAA compliance and ensuring patient safety? Compliance Challenges : Many AI solutions weren’t designed with HIPAA requirements in mind, creating potential compliance risks.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
The HIPAA Journal
JULY 23, 2025
The file review confirmed that the data potentially compromised in the incident included names, dates of birth, addresses, phone numbers, email addresses, client IDs, dates and times of recent visits, and clinical diagnostic information. Credit monitoring and identity restoration services have been offered to the affected individuals.
The HIPAA Journal
APRIL 27, 2025
HIPAA violation cases are compliance investigations that result from a data breach being notified to the Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) or a privacy complaint being submitted to OCR via the complaints portal. There are many different types of HIPAA violation cases.
The HIPAA Journal
MARCH 20, 2025
The HIPAA Journal has compiled healthcare data breach statistics from October 2009, when the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) started publishing summaries of healthcare data breaches on its website. MN Business Associate 190,000,000 Hacking/IT Incident 2 2015 Anthem Inc.
Healthcare Leadership Council
MAY 25, 2023
Erin noted the lack of harmonization with state laws on medical information privacy and other federal laws governing health information outside the scope of the Health Information Portability and Accountability Act (HIPAA). In closing, Jessica described two methods to achieve de-identification of PHI in accordance with the HIPAA Privacy Rule.
The HIPAA Journal
JULY 15, 2025
In May 2025, Marlboro-Chesterfield Pathology in North Carolina and Molecular Testing Labs (CareNexa) in Washington reported hacking incidents and data breaches, the latter via one of its business associates. The post Ransomware Gangs Attack Clinical and Pathology Laboratories appeared first on The HIPAA Journal.
Expert insights. Personalized for you.
Let's personalize your content