1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Elmore County (Healthcare Provider, ID) reported a HIPAA breach affecting 931 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
AltaMed Health Services Corporation (Healthcare Provider, CA) reported a HIPAA breach affecting 4,530 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email.
Decisely Insurance Services, LLC (Business Associate, GA) reported a HIPAA breach affecting 537,603 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server, Other.
Central Kentucky Radiology (Healthcare Provider, KY) reported a HIPAA breach affecting 166,953 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Kelley Drye & Warren LLP (Business Associate, NY) reported a HIPAA breach affecting 771 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Rural Health Services (Healthcare Provider, SC) reported a HIPAA breach affecting 36,542 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Texas Attorney General Ken Paxton filed a lawsuit in the 23andMe bankruptcy case to prevent the sale of Texans' genetic data without proper consent. The action seeks to confirm Texans' property rights over their genetic information under the Texas Data Privacy and Security Act and the Texas Direct-to-Consumer Genetic Testing Act. The AG argues that 23andMe's proposed asset sale would violate Texas law requiring separate express consent for disclosure of genetic information.
Imperial Beach Community Clinic (Healthcare Provider, CA) reported a HIPAA breach affecting 10,358 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Clarkston Chiropractic Sports & Wellness (Healthcare Provider, MI) reported a HIPAA breach affecting 2,757 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Repay Management Services, LLC (Health Plan, GA) reported a HIPAA breach affecting 606 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James, joined by 27 other state attorneys general and the District of Columbia, filed a lawsuit against 23andMe to block the company’s planned sale of 15 million customers’ genetic and health data without their consent or knowledge. The coalition argues 23andMe must comply with state laws requiring express informed consent for the sale or transfer of sensitive genetic data. The lawsuit seeks to prevent misuse, exposure in future breaches, and unauthorized use of customers’ private genetic information.
Southern Connecticut Vascular Center, LLC (Healthcare Provider, CT) reported a HIPAA breach affecting 154,417 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Episource, LLC (Business Associate, CA) reported a HIPAA breach affecting 6,725,572 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Public Health Trust of Miami Dade County DBA Jackson Health System (Healthcare Provider, FL) reported a HIPAA breach affecting 2,599 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Electronic Medical Record.
NYC Health + Hospitals (Healthcare Provider, NY) reported a HIPAA breach affecting 5,728 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Sharp Community Medical Group (Healthcare Provider, CA) reported a HIPAA breach affecting 26,976 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Sharp HealthCare (Healthcare Provider, CA) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Huron Regional Medical Center, Inc. (Healthcare Provider, SD) reported a HIPAA breach affecting 25,398 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Centivo Corporation (Business Associate, GA) reported a HIPAA breach affecting 630 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email.
Blue Shield of California (Business Associate, CA) reported a HIPAA breach affecting 1,543 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Other.
Jupiter Family Medicine PC (Healthcare Provider, MI) reported a HIPAA breach affecting 3,000 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Paper/Films.
Sensata Technologies, Inc. Health and Welfare Benefit Plan (Health Plan, MA) reported a HIPAA breach affecting 15,630 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Cumberland County Hospital Association (Healthcare Provider, KY) reported a HIPAA breach affecting 36,659 individuals. Breach type: Hacking/IT Incident. Location of breached information: Other.
Renkim Corporation (Business Associate, MI) reported a HIPAA breach affecting 105,518 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Next Step Healthcare LLC (Healthcare Provider, MA) reported a HIPAA breach affecting 12,090 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Oliver Street Dermatology Management LLC (Business Associate, TX) reported a HIPAA breach affecting 13,717 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Upper Dublin Family Dentistry (Healthcare Provider, PA) reported a HIPAA breach affecting 5,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Horizon Blue Cross Blue Shield NJ (Health Plan, NJ) reported a HIPAA breach affecting 781 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Missouri Department of Conservation (Health Plan, MO) reported a HIPAA breach affecting 10,260 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Providia Home Care, LLC dba Preferred Care Home Health Services (Healthcare Provider, FL) reported a HIPAA breach affecting 38,401 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
All data sourced from official government enforcement pages.