1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Williamsburg Area Medical Assistance Corporation d/b/a Olde Towne Medical and Dental Center (OTMDC) (Healthcare Provider, VA) reported a HIPAA breach affecting 2,567 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Regency Oaks (Healthcare Provider, FL) reported a HIPAA breach affecting 2,008 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Freedom Square of Seminole (Healthcare Provider, FL) reported a HIPAA breach affecting 3,473 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Picis Clinical Solutions, Inc. d/b/a Medstreaming (Business Associate, MA) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Anne Arundel Dermatology (Healthcare Provider, MD) reported a HIPAA breach affecting 1,905,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Freedom Plaza Senior Living (Healthcare Provider, FL) reported a HIPAA breach affecting 4,847 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Covenant Health (Business Associate, MA) reported a HIPAA breach affecting 7,864 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Florida Attorney General James Uthmeier launched an investigation into Robinhood Crypto, LLC for allegedly deceptive practices regarding trading costs. The AG issued a subpoena seeking internal documents to determine if Robinhood violated Florida's Deceptive and Unfair Practices Act by falsely claiming to offer the lowest crypto trading costs. Robinhood must respond by July 31, 2025.
Mountain Laurel Dermatology (Healthcare Provider, NC) reported a HIPAA breach affecting 3,324 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Massachusetts Attorney General settled with Earnest Operations LLC for $2.5 million over allegations that the student loan lender's use of AI underwriting models led to disparate impact on Black, Hispanic, and non-citizen applicants. The company failed to test its AI models for bias, used discriminatory variables like Cohort Default Rate, and sent inaccurate adverse action notices. Earnest must pay the fine, discontinue problematic practices, and implement compliance measures.
$2.5M
Naper Grove Vision Care (Healthcare Provider, IL) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Florida Lung, Asthma & Sleep Specialists (FLASS) (Healthcare Provider, FL) reported a HIPAA breach affecting 10,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Ascension Health Services LLC dba Alpha Wellness & Alpha Medical Centre (Healthcare Provider, GA) reported a HIPAA breach affecting 1,714 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Connecticut Attorney General William Tong announced a settlement with TicketNetwork, Inc. for violating the Connecticut Data Privacy Act by maintaining an unreadable privacy notice and non-functional consumer rights mechanisms. TicketNetwork agreed to comply with CTDPA requirements, maintain metrics for consumer rights requests, report to the AG, and pay $85,000.
$85K
Complete Care Rehab LLC (Healthcare Provider, MI) reported a HIPAA breach affecting 4,764 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
K&E Advanced Dentisrty (Healthcare Provider, OH) reported a HIPAA breach affecting 1,700 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
City of Franklin (Healthcare Provider, WI) reported a HIPAA breach affecting 3,233 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Arbor Associates, Inc. (Business Associate, MI) reported a HIPAA breach affecting 17,040 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Cierant Corporation (Business Associate, CT) reported a HIPAA breach affecting 232,506 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Urology Associates of Charleston (Healthcare Provider, SC) reported a HIPAA breach affecting 2,060 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Zumpano Patricios, P.A. (Business Associate, FL) reported a HIPAA breach affecting 279,275 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Radiology Associates of Richmond, Inc. (Healthcare Provider, VA) reported a HIPAA breach affecting 1,419,091 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
California Attorney General Rob Bonta announced a $1.55 million settlement with Healthline Media LLC for CCPA violations. Healthline failed to honor opt-out requests, shared consumer data including health-related article titles with third parties, and used deceptive privacy practices. The settlement includes injunctive relief and a compliance program.
$1.6M
Clinical Practices of the University of Pennsylvania (Healthcare Provider, PA) reported a HIPAA breach affecting 1,432 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Paper/Films.
Texas Center for Infectious Disease Associates (Healthcare Provider, TX) reported a HIPAA breach affecting 19,481 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Centers for Medicare & Medicaid Services (Health Plan, MD) reported a HIPAA breach affecting 107,154 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
California Cancer Associates for Research and Excellence – San Diego (Healthcare Provider, CA) reported a HIPAA breach affecting 638 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Denali Biomedical (Healthcare Provider, AK) reported a HIPAA breach affecting 2,413 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
The Supreme Court upheld a Texas law requiring pornography websites to implement age-verification measures to protect children from explicit content. Attorney General Ken Paxton is enforcing the law with fines for violations and has sued Aylo Global Entertainment for non-compliance.
PET Imaging of Dallas Northeast (Healthcare Provider, TX) reported a HIPAA breach affecting 1,935 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
All data sourced from official government enforcement pages.