PHI Dumping Leads to $140,000 HIPAA Settlement | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Alleged PHI Dumping Leads to $140,000 HIPAA Settlement

January 9, 2013
by Gabriel Perna
| Reprints

Massachusetts Attorney General Martha Coakley has announced the former owners of a Marblehead, Mass.-based medical billing practice and four pathology groups have agreed to pay $140,000 to pay possible HIPAA violations. According to the press release, the confidential billing information for approximately 67,000 Massachusetts-based patients was improperly disposed of at a public dump.

According to the complaint, the owners, Joseph and Louise Gagnon, who did business as Goldthwait Associates violated several state and federal laws by disposing of these medical records, which contained protected health information (PHI) from four Massachusetts pathology groups at the Georgetown Transfer Station, at the dump. The information included names, Social Security numbers, and medical diagnoses that were not redacted or destroyed when they were dumped. The matter came to the public eye when a Boston Globe photographer saw the records while dumping out his own trash.

 “Personal health information must be safeguarded as it passes from patients to doctors to medical billers and other third-party contractors,” Coakley said in a statement. “We believe this data breach put thousands of patients at risk, and it is the obligation of all parties involved to ensure that sensitive information is disposed of properly to prevent this from happening again.”

Topics

News

Survey: IT Expenses per Physician Continue to Rise to Nearly $19,000

Information technology (IT) expenses for physician practices are on a slow and steady rise for most practices, and last year, physician-owned practices spent between nearly $2,000 to $4,000 more per FTE physician on IT operating expenses than they did the prior year, according to a recent Medical Group Management Association (MGMA) survey.

Change Healthcare Joins Blockchain Initiative Hashed Health

Nashville-based Change Healthcare, one of the largest independent healthcare IT companies in the U.S., has announced that has joined the Hashed Health consortium, a firm dedicated to realizing the potential of blockchain and distributed ledger technologies.

Three Large Health Systems Join North Carolina’s HIE

Three of the largest health systems in North Carolina, Duke Health, Novant Health and Carolinas HealthCare System, have signed agreements to connect to NC HealthConnex, North Carolina’s state-designated health information exchange (HIE).

Study: What do Patients Value about Reading Their Visit Notes?

New research on the OpenNotes initiative has revealed multiple core themes on what patients value most about having access to their visit notes.

Digital Health Venture Capital Funding Tops $4 Billion in First Half of 2017

Global venture capital (VC) funding for health IT companies in the first half of 2017 was 36 percent higher year-over-year with a record $4 billion raised in 359 deals versus the $3 billion raised from 286 deals in the first half of 2016, according to a report from Mercom Capital Group.

Survey: 76 Percent of Health IT Execs Confident that IoT Devices are Protected

A survey of IT decision-makers within the healthcare industry found that the majority of IT departments believe that existing security solutions for laptops and servers can also protect connected Internet of Things (IoT) medical devices.