Providence Health Settles HIPAA Suit, Develops Corrective Plan | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Providence Health Settles HIPAA Suit, Develops Corrective Plan

July 18, 2008
by root
| Reprints

Providence Health and Services (Seattle) will pay a fine of $100,000 to settle potential HIPAA violations and is implementing a corrective action plan to more effectively protect electronic patient information, as a result of a resolution agreement it established with the U.S. Department of Health and Human Services (HHS (Washington, D.C.)

The agreement relates to Providence’s loss of electronic backup media and laptop computers containing individually identifiable health information in 2005 and 2006; the incidents were in violation of the Privacy and Security Rules, according to the organization.

The corrective action plan will require Providence to:
  • Revise its policies and procedures regarding physical and technical safeguards (e.g., encryption) governing off-site transport and storage of electronic media containing patient information, subject to HHS approval;
  • Train workforce members on the safeguards; and
  • Conduct audits and site visits of facilities; and submitting compliance reports to HHS for a period of three years.

The Resolution Agreement and Corrective Action Plan can be found on the OCR Web site at

Providence is a not-for-profit health system providing services to patient communities across five states, including Alaska, Washington, Montana, Oregon and California. The system includes 26 hospitals, more than 35 non-acute facilities, physician clinics, a health plan, and educational facilities.



NewYork-Presbyterian, Walgreens Partner on Telemedicine Initiative

NewYork-Presbyterian and Walgreens are collaborating to bring expanded access to NewYork-Presbyterian’s healthcare through new telemedicine services, the two organizations announced this week.

ONC Releases Patient Demographic Data Quality Framework

The Office of the National Coordinator for Health IT (ONC) developed a framework to help health systems, large practices, health information exchanges and payers to improve their patient demographic data quality.

AMIA, Pew Urge Congress to Ensure ONC has Funding to Implement Cures Provisions

The Pew Charitable Trusts and the American Medical Informatics Association (AMIA) have sent a letter to congressional appropriators urging them to ensure that ONC has adequate funding to implement certain 21st Century Cures Act provisions.

Former Michigan Governor to Serve as Chair of DRIVE Health

Former Michigan Governor John Engler will serve as chair of the DRIVE Health Initiative, a campaign aimed at accelerating the U.S. health system's transition to value-based care.

NJ Medical Group Launches Statewide HIE, OneHealth New Jersey

The Medical Society of New Jersey (MSNJ) recently launched OneHealth New Jersey, a statewide health information exchange (HIE) that is now live.

Survey: 70% of Providers Using Off-Premises Computing for Some Applications

A survey conducted by KLAS Research found that 70 percent of healthcare organizations have moved at least some applications or IT infrastructure off-premises.