Overlooking risks leads to breach, $400,000 settlement

Lock 0

The U.S. Department of Health and Human Services, Office for Civil Rights (OCR), has announced a Health Insurance Portability and Accountability Act of 1996 (HIPAA) settlement based on the lack of a security management process to safeguard electronic protected health information (ePHI). Metro Community Provider Network (MCPN), a federally-qualified health center (FQHC) of Denver, Colorado has agreed to settle potential noncompliance with the HIPAA Rules by paying $400,000 and implementing a corrective action plan.

ecfirst

ecfirst

ecfirst delivers complete end-to-end compliance and information security services across the United States and worldwide.

Training solutions include the gold standard HIPAA credential, Certified HIPAA Professional (CHP) and our world’s first compliance and cyber security credential, Certified Security Compliance Specialist (CSCS).

ecfirst is a HITRUST Authorized CSF Assessor.

Many clients engage ecfirst extensively for the flexible services that range from on-demand consulting to its managed compliance services programs that covers training, policies, remediation, risk assessment, technical vulnerability assessments penetration testing and much more.
ecfirst
Share.

Leave A Reply