UMass agrees to $650k settlement to resolve HIPAA violations

The University of Massachusetts Amherst agreed to pay $650,000 to settle allegations it violated HIPAA provisions resulting from a malware infection in 2013.

On June 18, 2013, UMass reported a workstation in its center for language, speech and hearing was infected with a malware program, compromising the privacy of 1,670 patients. Names, addresses, social security numbers, dates of birth, health insurance information and diagnoses and procedures codes were potentially disclosed.

In addition to the monetary settlement, UMass officials agreed to a corrective action plan which requires the organization conduct an enterprisewide risk analysis to guard against future threats.

More articles on health IT: 

Quest Diagnostics offers direct access to laboratory testing to Colorado & Missouri patients
21 hospitals, health systems seeking Cerner, Meditech, Epic talent
Cerner policy director on Trump presidency: We won't 'see something that devalues the role of health IT'

© Copyright ASC COMMUNICATIONS 2017. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.

 

Top 40 Articles from the Past 6 Months