1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Susan B. Allen Memorial Hospital (Healthcare Provider, KS) reported a HIPAA breach affecting 11,866 individuals. Breach type: Hacking/IT Incident. Location of breached information: Desktop Computer, Network Server.
City of St. Joseph, MO Health Department (Healthcare Provider, MO) reported a HIPAA breach affecting 11,538 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
People Encouraging People (Healthcare Provider, MD) reported a HIPAA breach affecting 13,083 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Health & Palliative Services of the Treasure Coast, Inc d/b/a Treasure Coast Hospice (“Treasure Health ”) (Healthcare Provider, FL) reported a HIPAA breach affecting 13,230 individuals. Breach type: Unauthorized Access/Disclosure. Location of breached information: Email.
Ennoble Care & Circa Health, LLC (Healthcare Provider, NJ) reported a HIPAA breach affecting 36,332 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Sturgis Hospital (Health Plan, MI) reported a HIPAA breach affecting 77,771 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Sun Valley Surgery Center (Healthcare Provider, NV) reported a HIPAA breach affecting 27,001 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
PGA Development, Inc. (Healthcare Provider, PA) reported a HIPAA breach affecting 23,899 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The FTC settled allegations against Apitor Technology for violating COPPA by allowing a third party to collect geolocation data from children without parental consent. Apitor must pay a $500,000 suspended fine, delete improperly collected data, and implement measures to comply with COPPA, including obtaining parental consent and notifying parents.
$500K
Teamsters Union 25 Health Services & Insurance Plan (Health Plan, MA) reported a HIPAA breach affecting 19,231 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The FTC released a statement by Chairman Ferguson, joined by Commissioners Holyoak and Meador, regarding the enforcement action against Disney Worldwide Services for alleged violations of the Children's Online Privacy Protection Act (COPPA). The statement addresses the case involving children's privacy protections.
The FTC distributed refunds to consumers who purchased deceptively marketed treatment plans from Golden Sunrise Nutraceutical. The company and its medical director were barred from making unsupported health claims about curing COVID-19, cancer, and Parkinson's disease after a court order in September 2025. Over $40,700 was sent to 578 consumers, with additional claims possible until May 2026.
$103K
Greater Pittsburgh Orthopaedics Associates (Healthcare Provider, PA) reported a HIPAA breach affecting 35,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Desktop Computer.
Pacific Imaging Management, LLC (Healthcare Provider, CA) reported a HIPAA breach affecting 13,158 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Beech Acres Parenting Center (Healthcare Provider, OH) reported a HIPAA breach affecting 19,315 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Massachusetts Attorney General Andrea Joy Campbell announced a $795,000 settlement with Peabody Properties, Inc. for failing to protect personal information and delaying breach notifications after multiple data breaches exposed nearly 14,000 residents' sensitive data. The consent decree requires payment to the Commonwealth and implementation of comprehensive cybersecurity measures.
$795K
Pediatric Otolaryngology Head & Neck Surgery Associates, P.A. (Healthcare Provider, FL) reported a HIPAA breach affecting 43,446 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Alert Medical Alarms (Healthcare Provider, PA) reported a HIPAA breach affecting 39,218 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
CPAP Medical Supplies and Services Inc. (Healthcare Provider, FL) reported a HIPAA breach affecting 90,133 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Mission City Community Network, Inc. (Healthcare Provider, CA) reported a HIPAA breach affecting 11,016 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Oglethorpe, Inc. (Healthcare Provider, FL) reported a HIPAA breach affecting 92,332 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
MDLand International Corporation (Business Associate, NY) reported a HIPAA breach affecting 22,586 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Langdon & Company, LLP Certified Public Accountants (Business Associate, NC) reported a HIPAA breach affecting 46,061 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Northwest Denture Center, Inc. (Healthcare Provider, WA) reported a HIPAA breach affecting 19,419 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
McKenzie Memorial Hospital (Healthcare Provider, MI) reported a HIPAA breach affecting 58,839 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Gastroenterology Consultants of South Texas (Healthcare Provider, TX) reported a HIPAA breach affecting 44,579 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Dr. Michael Bilikas and Associates d.b.a. 32 Pearls (Healthcare Provider, WA) reported a HIPAA breach affecting 23,517 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Infinite Services, Inc. (Healthcare Provider, NY) reported a HIPAA breach affecting 31,742 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Keys Pathology Associates, PA (Healthcare Provider, FL) reported a HIPAA breach affecting 20,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Self Regional Healthcare (Healthcare Provider, SC) reported a HIPAA breach affecting 26,696 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
All data sourced from official government enforcement pages.