1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
North Oaks Health System (Healthcare Provider, LA) reported a HIPAA breach affecting 6,243 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
La Perouse, LLC (Business Associate, NV) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The FTC distributed refunds to consumers who purchased deceptively marketed treatment plans from Golden Sunrise Nutraceutical. The company and its medical director were barred from making unsupported health claims about curing COVID-19, cancer, and Parkinson's disease after a court order in September 2025. Over $40,700 was sent to 578 consumers, with additional claims possible until May 2026.
$103K
University of Iowa Community Home Care (Healthcare Provider, IA) reported a HIPAA breach affecting 109,029 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
University of Iowa Health Care (Healthcare Provider, IA) reported a HIPAA breach affecting 101,875 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Carrollton Ear, Nose and Throat, PC (Healthcare Provider, GA) reported a HIPAA breach affecting 3,569 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Anthony L. Jordan Health Corporation (Healthcare Provider, NY) reported a HIPAA breach affecting 2,974 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Florida Attorney General James Uthmeier issued a subpoena to Lorex as part of an ongoing consumer protection and data privacy investigation. The probe examines Lorex’s ties to Dahua Technology and potential foreign spying risks, including unauthorized access to children’s data, and whether the company misled consumers about the privacy and security of its camera products and apps. The subpoena seeks documents related to corporate structure, third-party contracts, software update origins, data center locations, security vulnerabilities, and marketing claims about privacy and security.
Reimagine Network (Healthcare Provider, CA) reported a HIPAA breach affecting 4,799 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Greater Pittsburgh Orthopaedics Associates (Healthcare Provider, PA) reported a HIPAA breach affecting 35,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Desktop Computer.
College Parkside Pharmacy (Healthcare Provider, NY) reported a HIPAA breach affecting 5,736 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Assisted Living Pharmacy Service, LLC (Healthcare Provider, WI) reported a HIPAA breach affecting 5,590 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
College Hometown Pharmacy (Healthcare Provider, NY) reported a HIPAA breach affecting 9,742 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Pacific Imaging Management, LLC (Healthcare Provider, CA) reported a HIPAA breach affecting 13,158 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Department of Social Services for Vance County, North Carolina (Business Associate, NC) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
zizzl llc (Business Associate, WI) reported a HIPAA breach affecting 2,416 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Beech Acres Parenting Center (Healthcare Provider, OH) reported a HIPAA breach affecting 19,315 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Vital Imaging Medical Diagnostic Centers, LLC (Healthcare Provider, FL) reported a HIPAA breach affecting 260,000 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
FTC Chairman Andrew Ferguson sent warning letters to major technology companies, urging them not to weaken data security or censor American consumers' speech in response to foreign government demands. He reminded them that such actions could violate the FTC Act's prohibition on unfair and deceptive practices, particularly if companies break promises about encryption and security. The letters cite foreign laws like the EU's Digital Services Act and UK's Investigatory Powers Act as pressures that might lead to non-compliance.
McEwen & Associates (Business Associate, TX) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
FTC Chairman Andrew Ferguson sent warning letters to over a dozen major technology companies, reminding them of their obligations under the FTC Act to protect American consumers' data security and privacy, even when facing pressure from foreign governments to weaken encryption or censor content. The letters warn that weakening security measures or censoring speech in response to foreign demands could constitute deceptive practices under the FTC Act.
Arkansas Primary Care Clinic (Healthcare Provider, AR) reported a HIPAA breach affecting 2,491 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Massachusetts Attorney General Andrea Joy Campbell announced a $795,000 settlement with Peabody Properties, Inc. for failing to protect personal information and delaying breach notifications after multiple data breaches exposed nearly 14,000 residents' sensitive data. The consent decree requires payment to the Commonwealth and implementation of comprehensive cybersecurity measures.
$795K
Revere Health PC (Healthcare Provider, UT) reported a HIPAA breach affecting 605 individuals. Breach type: Hacking/IT Incident. Location of breached information: Desktop Computer.
CareTracker, Inc. (Business Associate, NY) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Pediatric Otolaryngology Head & Neck Surgery Associates, P.A. (Healthcare Provider, FL) reported a HIPAA breach affecting 43,446 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Lake City Cancer Care, LLC (Healthcare Provider, FL) reported a HIPAA breach affecting 9,980 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Welcome Dentistry-Anaheim (Healthcare Provider, CA) reported a HIPAA breach affecting 1,001 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Mower County Health and Human Services (Healthcare Provider, MN) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Alert Medical Alarms (Healthcare Provider, PA) reported a HIPAA breach affecting 39,218 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
All data sourced from official government enforcement pages.