1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Brain & Eye Connection Vision Clinic, PC (Healthcare Provider, OK) reported a HIPAA breach affecting 2,207 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Rockford Gastroenterology Associates (Healthcare Provider, IL) reported a HIPAA breach affecting 147,253 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James reached a settlement with Albany ENT & Allergy Services (AENT) over two 2023 ransomware attacks that compromised the medical records of over 200,000 New Yorkers. The OAG found AENT failed to maintain reasonable data security safeguards, inadequately oversaw third-party security vendors, and initially failed to disclose all exposed consumer data to the state. AENT will pay $1 million in penalties (with $500,000 suspended pending $2.25 million in security investments) and implement comprehensive data security measures including encryption, multi-factor authentication, and vendor oversight.
$1.0M
Hawaii Radiologic Associates, Ltd. (Healthcare Provider, HI) reported a HIPAA breach affecting 23,205 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Northeast Spine and Sports Medicine, LLC (Healthcare Provider, NJ) reported a HIPAA breach affecting 6,300 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Gandara Mental Health Center (Healthcare Provider, MA) reported a HIPAA breach affecting 20,024 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Mystic Valley Elder Services - Business Associate (Business Associate, MA) reported a HIPAA breach affecting 2,402 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Detroit Wayne Integrated Health Network (Healthcare Provider, MI) reported a HIPAA breach affecting 3,347 individuals. Breach type: Hacking/IT Incident. Location of breached information: Laptop.
Clay Platte Family Medicine (Healthcare Provider, MO) reported a HIPAA breach affecting 53,916 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Advanced Recovery Equipment & Supplies, LLC (Healthcare Provider, NY) reported a HIPAA breach affecting 56,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
RRCA Accounts Management Inc. (Business Associate, IL) reported a HIPAA breach affecting 115,837 individuals. Breach type: Hacking/IT Incident. Location of breached information: Desktop Computer, Network Server.
Summit Pathology and Summit Pathology Laboratories, Inc. (Healthcare Provider, CO) reported a HIPAA breach affecting 1,813,538 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Valleygate Dental Surgery Centers of Charlotte, Fayetteville, and the West, LLC. (Healthcare Provider, NC) reported a HIPAA breach affecting 14,589 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Wilmington Community Clinic (Healthcare Provider, CA) reported a HIPAA breach affecting 11,601 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
TheraCom, L.L.C. (Healthcare Provider, PA) reported a HIPAA breach affecting 9,271 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Schneider Regional Medical Center (Healthcare Provider, ) reported a HIPAA breach affecting 1,570 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Ciox Health LLC, d/b/a Datavant Group (Business Associate, AZ) reported a HIPAA breach affecting 320,702 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Dr. Daniel J. Leeman, M.D. (Healthcare Provider, TX) reported a HIPAA breach affecting 50,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Omni Family Health (Healthcare Provider, CA) reported a HIPAA breach affecting 468,344 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
ATSG, Inc (Business Associate, NY) reported a HIPAA breach affecting 909,469 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Texas Spine Consultants, PLLC (Healthcare Provider, TX) reported a HIPAA breach affecting 8,048 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Muskogee City County Enhanced 911 Trust Authority (Business Associate, OK) reported a HIPAA breach affecting 180,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Asheville Arthritis and Osteoporosis Center, P.A. (Healthcare Provider, NC) reported a HIPAA breach affecting 58,251 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Jacobsen Construction Co., Inc. Health Plan (Health Plan, UT) reported a HIPAA breach affecting 2,127 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Southern Bone & Joint Specialists, PA (“Southern Bone”) (Healthcare Provider, MS) reported a HIPAA breach affecting 7,162 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Atrium Health (Healthcare Provider, NC) reported a HIPAA breach affecting 32,120 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Maryville Academy (Healthcare Provider, IL) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Nationwide Recovery Services, Inc. (Business Associate, GA) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Welcome Health (Healthcare Provider, CA) reported a HIPAA breach affecting 597 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
EngageMED, Inc (Business Associate, AR) reported a HIPAA breach affecting 249,297 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
All data sourced from official government enforcement pages.