Part 2 — $22 Million Worth of Reasons Why It Pays to Comply with Regulatory Organizations

Last month, we introduced Part 1 of our five-part series dealing with regulatory fines. If Capital Market Services’ $75,000 fine from the National Futures Association didn’t send you into cardiac arrest, keep on reading.

Phoenix Cardiac Surgery — $100,000



In February 2009 the U.S. Office for Civil Rights (OCR) began a Health Insurance Portability and Accountability Act (HIPAA) investigation of Phoenix Cardiac Surgery, a small Arizona-based physician group, after receiving a notice that the group was publicly posting doctors’ appointments on its website. What had most likely started out as a matter of convenience for the practice soon became a hassle, as the investigation lasted three years.

The OCR found that the group had failed to perform a risk assessment, appoint a security official, create a plan for protecting patient information and inform employees of that plan. Phoenix Cardiac ultimately received a $100,000 monetary sanction.

Don't miss Part 3 next month!
Posted by
Subscribe to: Post Comments (Atom)

Popular Posts

Perspectives on Cloud Versus Colocation for Disaster Recovery
No one would argue that off-site redundancy is an essential part of an enterprise disaster recovery plan. Many enterprises — perhaps your...
Millennials and Business Continuity: Risks and Opportunities
Back in 2015, Pew Research found that millennials had surpassed Gen Xers as the largest generation in the U.S. workforce . By next year, mil...
FFIEC Update: Statement on Cyber Insurance and Risk Management
As cyber attacks increase in volume and sophistication, does your financial institution need cyber insurance to reduce its risk? According t...
Three Steps to Integrating Cybersecurity With Business Continuity
With cyber threats like ransomware routinely interrupting business operations around the globe, cybersecurity is not just an IT problem —...