1,338 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,338
Total Actions
14
Jurisdictions
$50.6B+
Total Fines Tracked
The Center at Cordera (Healthcare Provider, CO) reported a HIPAA breach affecting 6,057 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The California Privacy Protection Agency (CPPA) ordered Accurate Append, Inc. to pay a $55,400 fine for failing to register as a data broker under the Delete Act by the January 31, 2024 deadline. The company registered only after being contacted during an enforcement sweep and agreed to injunctive terms, including paying attorney fees for future non-compliance.
$55K
Compass Counseling Services, LLC (Healthcare Provider, FL) reported a HIPAA breach affecting 5,440 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The New Jersey Division of Consumer Affairs sent warning letters to over 3,000 auto dealerships reminding them of the state's data deletion law, which requires dealerships to offer to delete personal data from vehicles when accepting them for resale or lease. Failure to comply can result in fines of $500 for first offenses and $1,000 for subsequent offenses, aimed at preventing unauthorized access to sensitive consumer information stored in vehicle infotainment systems.
Doctors’ Memorial Hospital (Healthcare Provider, FL) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Nova Recovery Center, LLC d/b/a Nova Recovery Center (Healthcare Provider, TX) reported a HIPAA breach affecting 6,242 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Blue Shield of California (Health Plan, CA) reported a HIPAA breach affecting 783 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Laptop, Network Server, Other.
Kettering Adventist Healthcare (Healthcare Provider, OH) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
OrthoAtlanta LLC (Business Associate, GA) reported a HIPAA breach affecting 626 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Equilibria Mental Health Services (Healthcare Provider, PA) reported a HIPAA breach affecting 3,232 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
The Brien Center for Mental Health and Substance Abuse Services (Healthcare Provider, MA) reported a HIPAA breach affecting 5,427 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Human Development Services of Westchester (Healthcare Provider, NY) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Oregon Specialty Group (Healthcare Provider, OR) reported a HIPAA breach affecting 3,337 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Connecticut Attorney General settled with Capulet Entertainment over the failed Capulet Fest 2024, which was abruptly relocated and partially cancelled, leaving ticketholders without refunds. The settlement provides up to $50,000 in consumer refunds and imposes future requirements including performance bonds and contractor commitments.
Mid South Rehab Services Inc. (Healthcare Provider, MS) reported a HIPAA breach affecting 1,316 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Williamsburg Area Medical Assistance Corporation d/b/a Olde Towne Medical and Dental Center (OTMDC) (Healthcare Provider, VA) reported a HIPAA breach affecting 2,567 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Regency Oaks (Healthcare Provider, FL) reported a HIPAA breach affecting 2,008 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Freedom Square of Seminole (Healthcare Provider, FL) reported a HIPAA breach affecting 3,473 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Picis Clinical Solutions, Inc. d/b/a Medstreaming (Business Associate, MA) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Freedom Plaza Senior Living (Healthcare Provider, FL) reported a HIPAA breach affecting 4,847 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Covenant Health (Business Associate, MA) reported a HIPAA breach affecting 7,864 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Florida Attorney General James Uthmeier launched an investigation into Robinhood Crypto, LLC for allegedly deceptive practices regarding trading costs. The AG issued a subpoena seeking internal documents to determine if Robinhood violated Florida's Deceptive and Unfair Practices Act by falsely claiming to offer the lowest crypto trading costs. Robinhood must respond by July 31, 2025.
Mountain Laurel Dermatology (Healthcare Provider, NC) reported a HIPAA breach affecting 3,324 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Naper Grove Vision Care (Healthcare Provider, IL) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Ascension Health Services LLC dba Alpha Wellness & Alpha Medical Centre (Healthcare Provider, GA) reported a HIPAA breach affecting 1,714 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Connecticut Attorney General William Tong announced a settlement with TicketNetwork, Inc. for violating the Connecticut Data Privacy Act by maintaining an unreadable privacy notice and non-functional consumer rights mechanisms. TicketNetwork agreed to comply with CTDPA requirements, maintain metrics for consumer rights requests, report to the AG, and pay $85,000.
$85K
Complete Care Rehab LLC (Healthcare Provider, MI) reported a HIPAA breach affecting 4,764 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
K&E Advanced Dentisrty (Healthcare Provider, OH) reported a HIPAA breach affecting 1,700 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
City of Franklin (Healthcare Provider, WI) reported a HIPAA breach affecting 3,233 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Urology Associates of Charleston (Healthcare Provider, SC) reported a HIPAA breach affecting 2,060 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
All data sourced from official government enforcement pages.