1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
Altior Healthcare, LLC (Healthcare Provider, CA) reported a HIPAA breach affecting 1,002 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Jacksonville Medical Care (Healthcare Provider, AR) reported a HIPAA breach affecting 6,262 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Loretto Hospital (Healthcare Provider, IL) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Friendship House, Inc. (Healthcare Provider, NE) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Newburgh Healthcare Residential Center, Inc. (Healthcare Provider, IN) reported a HIPAA breach affecting 700 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Allegany Council on Alcoholism & Substance Abuse, Inc. (Healthcare Provider, NY) reported a HIPAA breach affecting 696 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Baptist Hospitals of Southeast Texas (Healthcare Provider, TX) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
North Hudson Community Action Corporation (Healthcare Provider, NJ) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
SimonMed Imaging (Healthcare Provider, AZ) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Bigfork Valley Hospital (Healthcare Provider, MN) reported a HIPAA breach affecting 8,496 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
MedicareCompareUSA (Business Associate, WA) reported a HIPAA breach affecting 5,782 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Millennium Home Health Care (Healthcare Provider, OK) reported a HIPAA breach affecting 4,743 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Presbyterian Health Plan (Health Plan, NM) reported a HIPAA breach affecting 7,100 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
The Pavilion at HealthPark, LLC dba Park Royal Hospital (Healthcare Provider, FL) reported a HIPAA breach affecting 9,349 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Lena Pope Home Inc. (Healthcare Provider, TX) reported a HIPAA breach affecting 3,523 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Welts, White, & Fontaine PC (Business Associate, NH) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Topy America Inc. (Health Plan, KY) reported a HIPAA breach affecting 1,827 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Baylor Scott & White Texas Spine & Joint Hospital (Healthcare Provider, TX) reported a HIPAA breach affecting 1,640 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Columbia Eye Clinic (Healthcare Provider, SC) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James filed a lawsuit against National General Holdings Corp and Allstate Insurance Company for failing to protect personal information and notify consumers of data breaches. The breaches exposed driver's license numbers of over 165,000 New Yorkers due to poor cybersecurity. The AG is seeking monetary penalties and an injunction.
New York Attorney General Letitia James filed a lawsuit against National General and Allstate Insurance Company for two data breaches in 2020 and 2021 that exposed the driver’s license numbers of over 165,000 New York residents. The AG alleges National General failed to implement reasonable data security measures, did not notify consumers or state agencies of the first breach, and left systems vulnerable to a second larger breach after Allstate took over data security operations. The AG is seeking monetary penalties and an injunction to prevent further violations.
Madison County, MS (Health Plan, MS) reported a HIPAA breach affecting 6,082 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Manchester Rehabilitation and Healthcare Center (Healthcare Provider, CT) reported a HIPAA breach affecting 5,415 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Kronick Moskovitz Tiedemann & Girard (Business Associate, CA) reported a HIPAA breach affecting 2,511 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Consultants in Pain Medicine (Healthcare Provider, TX) reported a HIPAA breach affecting 1,124 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Texas Attorney General Ken Paxton announced an investigation into Chinese AI company DeepSeek for alleged violations of the Texas Data Privacy and Security Act, citing concerns over the company’s privacy practices and ties to the Chinese Communist Party. The AG also notified DeepSeek of the alleged violations, issued a ban on DeepSeek’s platform on all Office of the Attorney General devices, and sent third-party Civil Investigative Demands to Google and Apple for documentation related to the DeepSeek app. The investigation stems from allegations that DeepSeek acts as a proxy for the CCP to steal Texas citizens’ data and undermine U.S. AI dominance.
Cornerstones of Care (Healthcare Provider, MO) reported a HIPAA breach affecting 2,771 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Spring Management OK, LLC (Business Associate, OK) reported a HIPAA breach affecting 2,494 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Connecticut filed a statement of interest in the bankruptcy of Prospect Medical Holdings, alleging years of mismanagement that harmed patients and led to a ransomware attack compromising the data of 212,369 residents. The state seeks to ensure a responsible transition of hospitals and hold Prospect accountable for its misconduct.
CPS Solutions, LLC (Business Associate, OH) reported a HIPAA breach affecting 500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
All data sourced from official government enforcement pages.