Archive for HIPAA Violations
A former financial counselor at an Alaska hospital will serve two years in federal prison for HIPAA violations in which she fed PHI on two patients to a drug kingpin who had caused the men to be hospitalized.
Alaska U.S. Attorney Karen Loeffler announced the news of the sentencing June 1, reports KTUU. Stacy Laulu, 33, received two years for each violation, but will serve both terms concurrently. She was convicted in January in the state’s first HIPAA conviction in Alaskan history and one of only a few such cases nationwide.
A nurse practitioner did just that, however, when she left her job at the University of Rochester Medical Center (URMC) in Rochester, New York, for a position at a local outside practice, Greater Rochester Neurology.
The employee took a list with her containing information on thousands of her patients and then shared that list with her new employer, all without getting permission from the patients, according to a press release issued May 26 by URMC.
Drug kingpin Stuart Seugasala was just convicted and sentenced on a string of federal charges that includes HIPAA violations in the course of running a violent drug trafficking ring in Alaska. Authorities said the trafficking ring imported and distributed illicit drugs, perpetrated armed home invasions, drive-by shootings, kidnappings, and sexual assaults.
The Alaska U.S. Attorney’s Office said it was the state’s first HIPAA conviction and one of only a few such cases nationwide.
Seugasala, 40, was sentenced May 15 to three life terms in prison following his conviction on drug trafficking and kidnapping charges earlier this year, but separate from that sentence was another 20 years for unauthorized access to medical records of two victims he hospitalized in 2013.
Anthem subscribers are rallying together to file lawsuits in response to the cyberattack on the insurer that exposed the PHI of 80 million current and former Anthem subscribers, according to the Times Union.
Subscribers filed class-action lawsuits against Anthem in Alabama, California, Georgia, and Indiana. Each lawsuit seeks more than $5 million in damages.
The PHI of 5,117 patients treated at a physician group affiliated with St. Peter’s Health Partners in Albany, New York, was exposed when a manager’s cellphone was stolen, according to www.bizjournals.com.
The stolen cellphone had access to corporate email systems and PHI for patients of St. Peter’s Medical Associates, P.C., including:
- Patient names
- Dates of birth
- Days, times, and locations of medical appointments
- General descriptions of reasons for appointments
The PHI was primarily limited to that of patients treated from August to November 2014. Health system officials learned of the cellphone theft November 24, 2014. Home addresses and phone numbers of two patients were listed in an email that could be accessed from the phone. The health system notified all affected patients, according to www.bizjournals.com.