After a data breach and a delayed breach notification process, healthcare network Presence Health was taken to court. The organisation has now agreed to a $475,000 Office for Civil Rights (OCR) HIPAA settlement.
In October 2013, the healthcare network realised paper-based operating room schedules relating to 836 individuals had gone missing from one of its surgeries. These documents contained protected health information and as the breach notification report was submitted to OCR in January 2014, the company was seen to have failed to notify OCR without unreasonable delay.
Presence Health Settles HIPAA Breach Suit for $475,000 – Healthcare IT News
Breach Notification Center of Presence Health HIPAA Settlement – Health IT Security