1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Family Centers, Inc. (Healthcare Provider, CT) reported a HIPAA breach affecting 12,142 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Baptist Hospitals of Southeast Texas (Healthcare Provider, TX) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Community Dental Care, Inc. (Healthcare Provider, MN) reported a HIPAA breach affecting 134,903 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Frederick Health (Healthcare Provider, MD) reported a HIPAA breach affecting 934,326 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Mayo Clinic (Healthcare Provider, MN) reported a HIPAA breach affecting 1,869 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email.
North Hudson Community Action Corporation (Healthcare Provider, NJ) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
SimonMed Imaging (Healthcare Provider, AZ) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Western Wayne Family Physicians (Healthcare Provider, MI) reported a HIPAA breach affecting 62,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Bigfork Valley Hospital (Healthcare Provider, MN) reported a HIPAA breach affecting 8,496 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Concord Orthopaedics (Healthcare Provider, NH) reported a HIPAA breach affecting 72,815 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
MedRevenu, LLC (Business Associate, CA) reported a HIPAA breach affecting 17,775 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
AmeriHealth Caritas Louisiana (Health Plan, LA) reported a HIPAA breach affecting 1,552 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Network Server, Other.
Fyzical Acquisition Holdings, LLC (Business Associate, FL) reported a HIPAA breach affecting 43,045 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
MedicareCompareUSA (Business Associate, WA) reported a HIPAA breach affecting 5,782 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Mid Florida Primary Care, PA (Healthcare Provider, FL) reported a HIPAA breach affecting 16,435 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James reached a $975,000 settlement with Root Insurance Company over a data breach that exposed the personal information of approximately 45,000 New York residents. The breach, discovered in January 2021, stemmed from Root’s inadequate data security measures, including unencrypted driver’s license numbers in quote PDFs and insufficient controls against automated attacks. In addition to the monetary penalty, Root must implement enhanced data security measures including a comprehensive information security program, data inventory, and monitoring systems.
$975K
Millennium Home Health Care (Healthcare Provider, OK) reported a HIPAA breach affecting 4,743 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The Pavilion at HealthPark, LLC dba Park Royal Hospital (Healthcare Provider, FL) reported a HIPAA breach affecting 9,349 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Heart to Heart Hospice Holdings, LLC (Healthcare Provider, TX) reported a HIPAA breach affecting 19,034 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Presbyterian Health Plan (Health Plan, NM) reported a HIPAA breach affecting 7,100 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Lena Pope Home Inc. (Healthcare Provider, TX) reported a HIPAA breach affecting 3,523 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Baylor Scott & White Texas Spine & Joint Hospital (Healthcare Provider, TX) reported a HIPAA breach affecting 1,640 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Columbia Eye Clinic (Healthcare Provider, SC) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
CDHA Management, LLC and Spark DSO, LLC dba Chord Specialty Dental Partners (Healthcare Provider, TN) reported a HIPAA breach affecting 173,430 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Klickitat Valley Health (Healthcare Provider, WA) reported a HIPAA breach affecting 26,339 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Topy America Inc. (Health Plan, KY) reported a HIPAA breach affecting 1,827 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Welts, White, & Fontaine PC (Business Associate, NH) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James filed a lawsuit against National General and Allstate Insurance Company for two data breaches in 2020 and 2021 that exposed the driver’s license numbers of over 165,000 New York residents. The AG alleges National General failed to implement reasonable data security measures, did not notify consumers or state agencies of the first breach, and left systems vulnerable to a second larger breach after Allstate took over data security operations. The AG is seeking monetary penalties and an injunction to prevent further violations.
Nice Healthcare Management Company, Inc (Healthcare Provider, MN) reported a HIPAA breach affecting 10,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Fort Wayne Medical Education Program (Healthcare Provider, IN) reported a HIPAA breach affecting 28,502 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
All data sourced from official government enforcement pages.