1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Summit Healthcare Medical Associates (Healthcare Provider, AZ) reported a HIPAA breach affecting 1,861 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Electronic Medical Record.
Altior Healthcare, LLC (Healthcare Provider, CA) reported a HIPAA breach affecting 1,002 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
The Connecticut Attorney General, leading a multistate task force of 51 attorneys general, issued warning letters to nine phone providers for allegedly routing unlawful robocalls. The providers have received numerous traceback notices for various scam calls, including government impersonations and financial fraud. The task force demands immediate cessation of illegal robocall facilitation or face legal action.
Jacksonville Medical Care (Healthcare Provider, AR) reported a HIPAA breach affecting 6,262 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Loretto Hospital (Healthcare Provider, IL) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Friendship House, Inc. (Healthcare Provider, NE) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Newburgh Healthcare Residential Center, Inc. (Healthcare Provider, IN) reported a HIPAA breach affecting 700 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Dallas County MHMR dba Metrocare Services (Healthcare Provider, TX) reported a HIPAA breach affecting 553 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email, Network Server.
Allegany Council on Alcoholism & Substance Abuse, Inc. (Healthcare Provider, NY) reported a HIPAA breach affecting 696 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Federal Trade Commission Chairman Andrew N. Ferguson issued a letter to the U.S. Trustee overseeing the 23andMe bankruptcy proceeding, expressing concerns about the potential sale or transfer of consumers' personal genetic data. The letter underscores the importance of companies honoring their privacy promises to consumers, particularly regarding sensitive information, during bankruptcy proceedings.
Baptist Hospitals of Southeast Texas (Healthcare Provider, TX) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Mayo Clinic (Healthcare Provider, MN) reported a HIPAA breach affecting 1,869 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email.
North Hudson Community Action Corporation (Healthcare Provider, NJ) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
SimonMed Imaging (Healthcare Provider, AZ) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Texas Attorney General Ken Paxton has opened an investigation into Superior Insurance for allegedly using private investigators to spy on lawmakers, journalists, and private citizens with pending insurance claims. The company's CEO admitted to these actions at a legislative hearing, citing concerns about blackmail and leveraging information to secure state contracts and avoid paying legitimate claims, particularly for medical bills.
Bigfork Valley Hospital (Healthcare Provider, MN) reported a HIPAA breach affecting 8,496 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
AmeriHealth Caritas Louisiana (Health Plan, LA) reported a HIPAA breach affecting 1,552 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Network Server, Other.
MedicareCompareUSA (Business Associate, WA) reported a HIPAA breach affecting 5,782 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Millennium Home Health Care (Healthcare Provider, OK) reported a HIPAA breach affecting 4,743 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The Pavilion at HealthPark, LLC dba Park Royal Hospital (Healthcare Provider, FL) reported a HIPAA breach affecting 9,349 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Presbyterian Health Plan (Health Plan, NM) reported a HIPAA breach affecting 7,100 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Lena Pope Home Inc. (Healthcare Provider, TX) reported a HIPAA breach affecting 3,523 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Baylor Scott & White Texas Spine & Joint Hospital (Healthcare Provider, TX) reported a HIPAA breach affecting 1,640 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Columbia Eye Clinic (Healthcare Provider, SC) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Topy America Inc. (Health Plan, KY) reported a HIPAA breach affecting 1,827 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Welts, White, & Fontaine PC (Business Associate, NH) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James filed a lawsuit against National General and Allstate Insurance Company for two data breaches in 2020 and 2021 that exposed the driver’s license numbers of over 165,000 New York residents. The AG alleges National General failed to implement reasonable data security measures, did not notify consumers or state agencies of the first breach, and left systems vulnerable to a second larger breach after Allstate took over data security operations. The AG is seeking monetary penalties and an injunction to prevent further violations.
New York Attorney General Letitia James filed a lawsuit against National General Holdings Corp and Allstate Insurance Company for failing to protect personal information and notify consumers of data breaches. The breaches exposed driver's license numbers of over 165,000 New Yorkers due to poor cybersecurity. The AG is seeking monetary penalties and an injunction.
SCLARC (Business Associate, CA) reported a HIPAA breach affecting 722 individuals. Breach type: Theft. Location of breached information: Laptop, Other Portable Electronic Device, Paper/Films.
Madison County, MS (Health Plan, MS) reported a HIPAA breach affecting 6,082 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
All data sourced from official government enforcement pages.